The Pop-up plugin for WordPress is vulnerable to an issue that allows unauthorized people to make changes to the plugin’s settings. This issue affects versions up to and including 1.1.1. It is caused by a missing capability check on the function wp_ajax_wp_mypopups.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
