EPSS
Percentile
41.4%
Authenticated Local File Inclusion (LFI) vulnerability discovered by 0xB9 (Patchstack Alliance) in WordPress Popup Box plugin (versions <= 2.1.2).
Update the WordPress Popup Box plugin to the latest available version (at least 2.2).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29445
wordpress.org/plugins/popup-box/#developers