Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Popup Builder-Create highly converting mobile friendly marketing popups Server-Side Request Forgery - CVE-2023-6294 - Vulnerability Database
WP Plugin Popup Builder

WordPress Plugin Popup Builder-Create highly converting mobile friendly marketing popups Server-Side Request Forgery - CVE-2023-6294

Medium
Reference: CVE-2023-6294
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-6294
Title: WordPress Plugin Popup Builder-Create highly converting mobile friendly marketing popups Server-Side Request Forgery
Overview:

WordPress Plugin Popup Builder-Create highly converting mobile friendly marketing popups is prone to a server-side request forgery vulnerability. An attacker may leverage this issue to make the vulnerable server perform port scanning of hosts in internal or external networks other attacks are also possible. WordPress Plugin Popup Builder-Create highly converting mobile friendly marketing popups version 4.2.5 is vulnerable prior versions may also be affected.