CVE-2022-2405 - Vulnerability Details - OpenCVE

The WP Popup Builder WordPress plugin before 1.2.9 does not have authorisation and CSRF check in an AJAX action, allowing any authenticated users, such as subscribers to delete arbitrary Popup

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact partial

Vendors	Products
Themehunk	Wp Popup Builder

Configuration 1 [-]

cpe:2.3:a:themehunk:wp_popup_builder:*:*:*:*:*:wordpress:*:*

No data.

References

Link	Providers
https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917

History

Wed, 21 May 2025 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2022-09-26T12:35:34.000Z

Updated: 2025-05-21T19:19:27.568Z

Reserved: 2022-07-14T00:00:00.000Z

Link: CVE-2022-2405

Vulnrichment

Updated: 2024-08-03T00:39:07.244Z

NVD

Status : Modified

Published: 2022-09-26T13:15:10.447

Modified: 2025-05-21T20:15:26.957

Link: CVE-2022-2405

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "WP Popup Builder \u2013 Popup Forms , Marketing PoPuP & Newsletter", "vendor": "Unknown", "versions": [{"lessThan": "1.2.9", "status": "affected", "version": "1.2.9", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Krzysztof Zaj\u0105c"}], "descriptions": [{"lang": "en", "value": "The WP Popup Builder WordPress plugin before 1.2.9 does not have authorisation and CSRF check in an AJAX action, allowing any authenticated users, such as subscribers to delete arbitrary Popup"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-862", "description": "CWE-862 Missing Authorization", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-352", "description": "CWE-352 Cross-Site Request Forgery (CSRF)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-10-03T13:45:21.000Z", "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917"}], "source": {"discovery": "EXTERNAL"}, "title": "WP Popup Builder < 1.3.0 - Subscriber+ Arbitrary Popup Deletion", "x_generator": "WPScan CVE Generator", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "contact@wpscan.com", "ID": "CVE-2022-2405", "STATE": "PUBLIC", "TITLE": "WP Popup Builder < 1.3.0 - Subscriber+ Arbitrary Popup Deletion"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "WP Popup Builder \u2013 Popup Forms , Marketing PoPuP & Newsletter", "version": {"version_data": [{"version_affected": "<", "version_name": "1.2.9", "version_value": "1.2.9"}]}}]}, "vendor_name": "Unknown"}]}}, "credit": [{"lang": "eng", "value": "Krzysztof Zaj\u0105c"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The WP Popup Builder WordPress plugin before 1.2.9 does not have authorisation and CSRF check in an AJAX action, allowing any authenticated users, such as subscribers to delete arbitrary Popup"}]}, "generator": "WPScan CVE Generator", "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-862 Missing Authorization"}]}, {"description": [{"lang": "eng", "value": "CWE-352 Cross-Site Request Forgery (CSRF)"}]}]}, "references": {"reference_data": [{"name": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917", "refsource": "MISC", "url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917"}]}, "source": {"discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T00:39:07.244Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917"}]}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-05-21T19:19:01.204882Z", "id": "CVE-2022-2405", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T19:19:27.568Z"}}]}, "cveMetadata": {"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "assignerShortName": "WPScan", "cveId": "CVE-2022-2405", "datePublished": "2022-09-26T12:35:34.000Z", "dateReserved": "2022-07-14T00:00:00.000Z", "dateUpdated": "2025-05-21T19:19:27.568Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T00:39:07.244Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2022-2405", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-05-21T19:19:01.204882Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-21T19:19:22.341Z"}}], "cna": {"title": "WP Popup Builder < 1.3.0 - Subscriber+ Arbitrary Popup Deletion", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "value": "Krzysztof Zaj\u0105c"}], "affected": [{"vendor": "Unknown", "product": "WP Popup Builder \u2013 Popup Forms , Marketing PoPuP & Newsletter", "versions": [{"status": "affected", "version": "1.2.9", "lessThan": "1.2.9", "versionType": "custom"}]}], "references": [{"url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917", "tags": ["x_refsource_MISC"]}], "x_generator": "WPScan CVE Generator", "descriptions": [{"lang": "en", "value": "The WP Popup Builder WordPress plugin before 1.2.9 does not have authorisation and CSRF check in an AJAX action, allowing any authenticated users, such as subscribers to delete arbitrary Popup"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-352", "description": "CWE-352 Cross-Site Request Forgery (CSRF)"}]}], "providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2022-10-03T13:45:21.000Z"}, "x_legacyV4Record": {"credit": [{"lang": "eng", "value": "Krzysztof Zaj\u0105c"}], "source": {"discovery": "EXTERNAL"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"version": {"version_data": [{"version_name": "1.2.9", "version_value": "1.2.9", "version_affected": "<"}]}, "product_name": "WP Popup Builder \u2013 Popup Forms , Marketing PoPuP & Newsletter"}]}, "vendor_name": "Unknown"}]}}, "data_type": "CVE", "generator": "WPScan CVE Generator", "references": {"reference_data": [{"url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917", "name": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917", "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "eng", "value": "The WP Popup Builder WordPress plugin before 1.2.9 does not have authorisation and CSRF check in an AJAX action, allowing any authenticated users, such as subscribers to delete arbitrary Popup"}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-862 Missing Authorization"}]}, {"description": [{"lang": "eng", "value": "CWE-352 Cross-Site Request Forgery (CSRF)"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2022-2405", "STATE": "PUBLIC", "TITLE": "WP Popup Builder < 1.3.0 - Subscriber+ Arbitrary Popup Deletion", "ASSIGNER": "contact@wpscan.com"}}}}, "cveMetadata": {"cveId": "CVE-2022-2405", "state": "PUBLISHED", "dateUpdated": "2025-05-21T19:19:27.568Z", "dateReserved": "2022-07-14T00:00:00.000Z", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "datePublished": "2022-09-26T12:35:34.000Z", "assignerShortName": "WPScan"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:themehunk:wp_popup_builder:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "6CCEEC48-17DF-4B69-A3B4-CA8F43DD56A8", "versionEndExcluding": "1.2.9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The WP Popup Builder WordPress plugin before 1.2.9 does not have authorisation and CSRF check in an AJAX action, allowing any authenticated users, such as subscribers to delete arbitrary Popup"}, {"lang": "es", "value": "El plugin WP Popup Builder WordPress antes de la versi\u00f3n 1.2.9 no dispone de autorizaci\u00f3n y comprobaci\u00f3n CSRF en una acci\u00f3n AJAX, lo que permite a cualquier usuario autentificado, como los suscriptores, eliminar Popups arbitrarios"}], "id": "CVE-2022-2405", "lastModified": "2025-05-21T20:15:26.957", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2022-09-26T13:15:10.447", "references": [{"source": "contact@wpscan.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/50037028-2790-47ee-aae1-faf0724eb917"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}, {"lang": "en", "value": "CWE-862"}], "source": "contact@wpscan.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-352"}, {"lang": "en", "value": "CWE-862"}], "source": "nvd@nist.gov", "type": "Primary"}]}