Threat Post

WordPress Plugin Bug in Popup Builder Threatens 100K Websites

The high-severity flaw allows malicious code injection into website pop-up windows. Two vulnerabilities – including a high-severity flaw – have been patched in a popular WordPress plugin called Popup ...
Searchenginejournal.com

WordPress Popup Builder Contains Serious Vulnerabilities

The vulnerability was discovered by WordFence on March 4, 2020 and subsequently contacted the developers. The WordPress plugin vulnerability affects Popup Builder versions that are less than version 3 ...
Searchenginejournal.com

WordPress Popup Maker Vulnerability Affects Up To +700,000 Sites

A vulnerability was discovered in the “Popup Maker – Popup for opt-ins, lead gen, & more” WordPress plugin which is installed in over 700,000 websites. The Popup Maker plugin integrates with many of ...
Dark Reading

Nearly 7K WordPress Sites Compromised by Balada Injector

About 6,700 WordPress websites have been infected with the Balada Injector malware, after using a Popup Builder plug-in with a cross-site scripting (XSS) vulnerability tracked as CVE-2023-6000. The ...
Threat Post

WordPress Pop-Up Builder Plugin Flaw Plagues 200K Sites

The flaw could have let attackers send out custom newsletters and delete newsletter subscribers from 200,000 affected websites. Developers of a plugin, used by WordPress websites for building pop-up ...