cleantalk
Vulnerabilities and Security Researches

Popup Box – Best WordPress Popup Plugin, CVE-2026-54192

CVE, Research URL

CVE-2026-54192

Home page URL

Security reports for Popup Box – Best WordPress Popup Plugin

Application

Popup Box – Best WordPress Popup Plugin

Published on
Jun 17, 2026
Research Description
Unauthenticated Cross Site Scripting (XSS) in Popup box <= 6.2.9 versions.
Affected versions
max 6.3.0.
Status
vulnerable
Previous vulnerability researches
Divi Forms Styler &#8211; Gravity Forms, Fluent Forms &amp; Contact Form 7 (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
Divi Forms Styler &#8211; Gravity Forms, Fluent Forms &amp; Contact Form 7 (9b1e2230b7886edf3c051cec5a5c91d89e19bc13) , Jun 16, 2026
Divi Forms Styler &#8211; Gravity Forms, Fluent Forms &amp; Contact Form 7 (CVE-2022-4974) , Nov 15, 2024
Divi Forms Styler &#8211; Gravity Forms, Fluent Forms &amp; Contact Form 7 (CVE-2023-33999) , Jun 13, 2026
Divi Forms Styler &#8211; Gravity Forms, Fluent Forms &amp; Contact Form 7 (e24566f9bdab14b4b44a1c0befc6d678dd11428c) , Jun 06, 2024
New vulnerability
Clean Login (CVE-2026-54184) , Jun 19, 2026
Image Optimization by Optimole &#8211; Lazy Load, CDN, Convert WebP &amp; AVIF (CVE-2026-11784) , Jun 19, 2026
Orbit Fox by ThemeIsle (CVE-2026-11358) , Jun 19, 2026
Dokan &#8211; Best WooCommerce Multivendor Marketplace Solution &#8211; Build Your Own Amazon, eBay, Etsy (CVE-2026-10023) , Jun 19, 2026
Services Section block &#8211; Showcase services in a professional way. (CVE-2026-11402) , Jun 19, 2026