Filtered by vendor Ghozylab
Subscriptions
Filtered by product Popup Builder
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-3236 | 1 Ghozylab | 1 Popup Builder | 2025-05-13 | 5.4 Medium |
| The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks. | ||||
| CVE-2025-46230 | 2 Ghozylab, Wordpress | 2 Popup Builder, Wordpress | 2025-04-29 | 7.5 High |
| Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in GhozyLab Popup Builder allows PHP Local File Inclusion. This issue affects Popup Builder: from n/a through 1.1.35. | ||||
Page 1 of 1.