cleantalk
Vulnerabilities and Security Researches

Popup by Supsystic, CVE-2021-24275

CVE, Research URL

CVE-2021-24275

Home page URL

Security reports for Popup by Supsystic

Application

Popup by Supsystic

Published on
May 06, 2021
Research Description
The Popup by Supsystic WordPress plugin before 1.10.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue
Affected versions
Min -, max 1.10.5.
Status
vulnerable
Previous vulnerability researches
Popup by Supsystic (CVE-2024-52434) , Nov 19, 2024
Popup by Supsystic (CVE-2023-51353) , Mar 21, 2025
Popup by Supsystic (CVE-2023-39997) , Jun 10, 2024
Popup by Supsystic (CVE-2023-46197) , Jun 06, 2024
Popup by Supsystic (CVE-2023-3186) , Jun 06, 2024
New vulnerability
DirectIQ Email Marketing (CVE-2025-52829) , Jun 28, 2025
e.nigma buttons (CVE-2025-5535) , Jun 28, 2025
Evangelische Termine (CVE-2025-28960) , Jun 28, 2025
GG Bought Together for WooCommerce (CVE-2025-23967) , Jun 28, 2025
FormLift for Infusionsoft Web Forms (CVE-2025-47654) , Jun 28, 2025