Popup Builder < 3.64.1 - Multiple Issues



Description
"One vulnerability allowed an unauthenticated attacker to inject malicious JavaScript into any published popup, which would then be executed whenever the popup loaded. The other vulnerability allowed any logged-in user, even those with minimal permissions such as a subscriber, to export a list of all newsletter subscribers, export system configuration information, and grant themselves access to various features of the plugin."

- Unauthenticated Stored Cross-Site Scripting (XSS)
- Authenticated Settings Modification, Configuration Disclosure, and User Data Export

Affects Plugin

References

CVE 2020-10196
CVE 2020-10195
URL https://www.wordfence.com/blog/2020/03/vulnerabilities-patched-in-popup-builder-plugin-affecting-over-100000-sites/

Classification

Type MULTI

Miscellaneous

Original Researcher Wordfence
Views 1822
Verified No
WPVDB ID 10127

Timeline

Publicly Published 2020-03-12 (22 days ago)
Added 2020-03-12 (21 days ago)
Last Updated 2020-03-13 (21 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin