Log out
Get PRO

Latest

Input validation vulnerability in WPOptin – AI-Powered Top Bars, PopUps & Lead Generation 2.0.8

  • Severity: medium-risk
  • Status: Fixed
  • Publication: February 2, 2025

The WPOptin plugin, used for creating top bars, pop-ups, and generating leads on WordPress websites, has a security issue called Stored Cross-Site Scripting. This means that the plugin does not properly check for harmful code in its input and output, making it possible for hackers to insert their own code into pages and potentially access user information. This vulnerability exists in all versions up to 2.0.8, allowing attackers to execute their scripts whenever a user visits the affected page.

Detected in:

WPOptin – AI-Powered Top Bars, PopUps & Lead Generation fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.