WordPress Plugin Vulnerabilities

Timed Popup <= 1.3 - CSRF & Stored XSS

Description

The wp-timed-popup WordPress plugin was affected by a CSRF & Stored XSS security vulnerability.

Affects Plugins

Plugin icon
wp-timed-popup
No known fix

References

URL
https://packetstormsecurity.com/files/#129510/

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
df0e7407-6be4-4c4c-aca0-46b5b277ed55

Timeline

Publicly Published
2014-12-14 (about 11 years ago)
Added
2014-12-14 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2017-05-11
Title
Tracking Code Manager < 1.11.4 - Authenticated XSS, CSRF & DoS
Published
2014-08-01
Title
Love It - XSS / Content Spoofing / Path Disclosure
Published
2020-01-09
Title
CityBook < 2.3.4 - Multiple Vulnerabilities
Published
2015-05-15
Title
Awesome Support < 3.1.7 - XSS & Shortcodes Allowed in Replies
Published
2012-04-23
Title
Organizer <= 1.2.1 - Cross Site Scripting / Path Disclosure