Vulnerabilities have been discovered in a popular WordPress plugin called Popup Builder which could allow unauthenticated attackers to inject malicious JavaScript code into popups in order to steal ...

The high-severity flaw allows malicious code injection into website pop-up windows. Two vulnerabilities – including a high-severity flaw – have been patched in a popular WordPress plugin called Popup ...

The flaw could have let attackers send out custom newsletters and delete newsletter subscribers from 200,000 affected websites. Developers of a plugin, used by WordPress websites for building pop-up ...

A vulnerability was discovered in the “Popup Maker – Popup for opt-ins, lead gen, & more” WordPress plugin which is installed in over 700,000 websites. The Popup Maker plugin integrates with many of ...

The vulnerability was discovered by WordFence on March 4, 2020 and subsequently contacted the developers. The WordPress plugin vulnerability affects Popup Builder versions that are less than version 3 ...

Hackers are breaching WordPress sites by exploiting a vulnerability in outdated versions of the Popup Builder plugin, infecting over 3,300 websites with malicious code. The flaw leveraged in the ...

Hackers subscribed to WordPress websites running Slick Popup plugin can take over the website by enabling a backdoor administrator account with hardcoded credentials. The vulnerability is active at ...

About 6,700 WordPress websites have been infected with the Balada Injector malware, after using a Popup Builder plug-in with a cross-site scripting (XSS) vulnerability tracked as CVE-2023-6000. The ...