Lucene search
Roel van BeurdenWPVDB-ID:4D4709F3-AD38-4519-A24A-73BC04B20E52HistoryApr 12, 2022 - 12:00 a.m.
Popup Maker < 1.16.5 - Admin+ Stored Cross-Site Scripting
2022-04-1200:00:00
Roel van Beurden
wpscan.com
56
0.001 Low
EPSS
Percentile
38.3%
The plugin does not sanitise and escape some of its Popup settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
PoC
Popup Maker > Create Popup > Popup Settings > Triggers > Add New Cookie > Add > Cookie Time, overwrite the default ‘1 month’ with the following XSS payload: Click ‘Update’ and Save/Update the Popup. The XSS will be triggered when editing the popup again
| CPE | Name | Operator | Version |
|---|---|---|---|
| popup-maker | lt | 1.16.5 |
Related
osv
osv
CVE-2022-1104
2022-05-09 17:15:08
openvas
openvas
WordPress Popup Maker Plugin < 1.16.5 XSS Vulnerability
2023-02-23 00:00:00
cvelist
cvelist
CVE-2022-1104 Popup Maker < 1.16.5 - Admin+ Stored Cross-Site Scripting
2022-05-09 16:50:46
cve
cve
CVE-2022-1104
2022-05-09 17:15:08
checkpoint_advisories
checkpoint_advisories
WordPress Popup Maker Plugin Cross-Site Scripting (CVE-2022-1104)
2022-11-17 00:00:00
prion
prion
Cross site scripting
2022-05-09 17:15:00
wpexploit
wpexploit
Popup Maker < 1.16.5 - Admin+ Stored Cross-Site Scripting
2022-04-12 00:00:00
patchstack
patchstack
nvd
nvd
CVE-2022-1104
2022-05-09 17:15:08