Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups 1.3.5

  • Severity: high-risk
  • Status: Fixed
  • Publication: January 10, 2025

The Coupon X plugin for WordPress, which is used for pop up ads, has a security vulnerability that allows attackers to inject harmful code. This can only be done by someone with Contributor-level access or higher, and there is no known protection against it. If the target system has other plugins or themes installed, the attacker could potentially delete files, access private information, or run their own code.

Detected in:

Coupon X – Discount Popups & Promo Codes Pop Ups for WooCommerce fixed vulnerable versions:
Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups fixed vulnerable versions: >= * <= 1.3.5

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.