Skip to content

Features
Pricing

Search

WordPress Plugin Vulnerabilities

Popup | Custom Popup Builder < 1.3.1 - Unauthenticated Denial of Service

Description

The plugin autoload data from its popup on every pages, as such data can be sent by unauthenticated user, and is not validated in length, this could cause a denial of service on the blog

Proof of Concept

1) Create a popup (as admin) and access the popup page (as unauthenticated)

2) Send data on the form and intercept the request

3) In the request add a payload called theme_id with any amount of data you want and send it

4) At each pageview the data that was sent will be loaded

Complete POC: https://youtu.be/Do0mLUY9t9I

Affects Plugins

Fixed in 1.3.1

References

CVE

Miscellaneous

Original Researcher

Felipe de Avila

Submitter

Felipe de Avila

Verified

Yes

WPVDB ID

ca2e8feb-15d6-4965-ad9c-8da1bc01e0f4

Timeline

Publicly Published

2022-01-17 (about 3 years ago)

Added

2022-01-17 (about 3 years ago)

Last Updated

2022-04-12 (about 3 years ago)

Other

Published

Title

Published

2025-09-25

Title

Download After Email 2.1.5 - 2.1.6 - Unauthorized Repeated Form Submissions

Published

2019-11-05

Title

Safe SVG <= 1.9.4 - Denial of Service

Published

2019-12-23

Title

BuddyPress < 5.1.1 - Denial of Service

Published

2023-10-12

Title

WP < 6.3.2 - Denial of Service via Cache Poisoning

Published

2022-07-11

Title

GiveWP < 2.21.3 - DoS via CSRF

Vulnerabilities

WordPress
Plugins
Themes
Our Stats
Submit vulnerabilities

About

How it works
Pricing
WordPress plugin
Blog
Contact

For Developers

Status
API details
CLI scanner

Other

Privacy
Terms of service
Submission terms
Disclosure policy
Privacy Notice for California Users

In partnership with Jetpack

GitHub
Twitter
Facebook

An

endeavor

Subscribe Subscribed
- WPScan
- Already have a WordPress.com account? Log in now.