cleantalk
Vulnerabilities and Security Researches

Pretty Simple Popup Builder, 151dd12759a625ce194d0174ccb42453eeaa1d0a

CVE, Research URL

151dd12759a625ce194d0174ccb42453eeaa1d0a

Home page URL

Security reports for Pretty Simple Popup Builder

Application

Pretty Simple Popup Builder

Published on
Jul 18, 2023
Research Description
Pretty Simple Popup Builder [pretty-simple-popup-builder] < 1.0.7 WordPress Pretty Simple Popup Builder Plugin < 1.0.7 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Pretty Simple Popup Builder plugin to the latest available version (at least 1.0.7). Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Pretty Simple Popup Builder Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.0.7.
Affected versions
max 1.0.7.
Status
vulnerable
Previous vulnerability researches
Pretty Simple Popup Builder (CVE-2024-56298) , Jan 07, 2025
Pretty Simple Popup Builder (151dd12759a625ce194d0174ccb42453eeaa1d0a) , Jun 07, 2024
Pretty Simple Popup Builder (CVE-2024-39626) , Jul 27, 2024
New vulnerability
Woo File Dropzone (CVE-2025-68862) , Feb 27, 2026
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2025-69312) , Feb 27, 2026
YaMaps for WordPress Plugin (CVE-2025-14851) , Feb 27, 2026
Tickera &#8211; WordPress Event Ticketing (CVE-2025-12356) , Feb 27, 2026
Responsive Lightbox &amp; Gallery (CVE-2025-15386) , Feb 27, 2026