Vulnerabilities > Unlimited Popups Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-08	CVE-2021-24631	SQL Injection vulnerability in Unlimited Popups Project Unlimited Popups 4.5.3 The Unlimited PopUps WordPress plugin through 4.5.3 does not sanitise or escape the did GET parameter before using it in a SQL statement, available to users as low as editor, leading to an authenticated SQL Injection network low complexity unlimited-popups-project CWE-89	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.

Vulnerabilities > Unlimited Popups Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Unlimited Popups Project"}]}

Vulnerabilities > Unlimited Popups Project