cleantalk
Vulnerabilities and Security Researches

Pretty Simple Popup Builder, 151dd12759a625ce194d0174ccb42453eeaa1d0a

CVE, Research URL

151dd12759a625ce194d0174ccb42453eeaa1d0a

Home page URL

Security reports for Pretty Simple Popup Builder

Application

Pretty Simple Popup Builder

Published on
Jul 18, 2023
Research Description
Pretty Simple Popup Builder [pretty-simple-popup-builder] < 1.0.7 WordPress Pretty Simple Popup Builder Plugin < 1.0.7 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Pretty Simple Popup Builder plugin to the latest available version (at least 1.0.7). Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Pretty Simple Popup Builder Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.0.7.
Affected versions
max 1.0.7.
Status
vulnerable
Previous vulnerability researches
Pretty Simple Popup Builder (CVE-2024-56298) , Jan 07, 2025
Pretty Simple Popup Builder (151dd12759a625ce194d0174ccb42453eeaa1d0a) , Jun 07, 2024
Pretty Simple Popup Builder (CVE-2024-39626) , Jul 27, 2024
Pop ups, Exit intent popups, email popups, banners, bars, countdowns and cart savers &#8211; Promolayer (CVE-2024-3602) , Jun 21, 2024
WP Popup Builder &#8211; Popup Forms and Marketing Lead Generation (CVE-2024-9061) , Oct 17, 2024
New vulnerability
Image Optimizer by Elementor – Compress, Resize and Optimize Images (CVE-2026-25387) , Feb 27, 2026
Printful Integration for WooCommerce (CVE-2025-12375) , Feb 27, 2026
PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes (CVE-2026-25322) , Feb 27, 2026
Page Builder Gutenberg Blocks – CoBlocks (CVE-2026-27094) , Feb 27, 2026
ElementsKit Elementor addons (CVE-2026-23693) , Feb 27, 2026