Cross-site request forgery (CSRF) vulnerability in “WordPress Popup Builder plugin” (versions <= 4.1.0) leading to a change in popup status.

Details

Cross Site Request Forgery (CSRF) vulnerability discovered in the WordPress Popup Builder plugin (version <= 4.1.0) that leads to a change in popup status.

solution

Update the WordPress Popup Builder plugin to the latest version available (at least 4.1.1).

Sources.

Popup Builder – Create highly converting, mobile friendly marketing popups.
Increase Sales, Lead Generation, Conversion rates and receive good Call to Action rates with smart WordPress popup plugin.

脆弱性情報を受け取る