Vulnerabilities > Optinmonster

DATE	CVE	VULNERABILITY TITLE	RISK
2023-03-13	CVE-2023-0772	Unspecified vulnerability in Optinmonster The Popup Builder by OptinMonster WordPress plugin before 2.12.2 does not ensure that the campaign to be loaded via some shortcodes is actually a campaign, allowing any authenticated users such as subscriber to retrieve the content of arbitrary posts, like draft, private or even password protected ones. network low complexity optinmonster	6.5
2019-09-20	CVE-2016-10996	Incorrect Authorization vulnerability in Optinmonster The optinmonster plugin before 1.1.4.6 for WordPress has incorrect access control for shortcodes because of a nonce leak. network low complexity optinmonster CWE-863	5.3

Vulnerabilities > Optinmonster {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Optinmonster"}]}