Vulnerabilities > Code Atlantic > Popup Maker > 1.16.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-20 | CVE-2022-47597 | Unspecified vulnerability in Code-Atlantic Popup Maker Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Popup Maker Popup Maker – Popup for opt-ins, lead gen, & more.This issue affects Popup Maker – Popup for opt-ins, lead gen, & more: from n/a through 1.17.1. | 7.5 |
| 2023-01-02 | CVE-2022-4362 | Unspecified vulnerability in Code-Atlantic Popup Maker The Popup Maker WordPress plugin before 1.16.9 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks | 5.4 |
| 2023-01-02 | CVE-2022-4381 | Unspecified vulnerability in Code-Atlantic Popup Maker The Popup Maker WordPress plugin before 1.16.9 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks | 5.4 |
| 2022-11-21 | CVE-2022-3690 | Unspecified vulnerability in Code-Atlantic Popup Maker The Popup Maker WordPress plugin before 1.16.11 does not sanitise and escape some of its Popup options, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks, which could be used against admins | 4.8 |