CM Popup Plugin for WordPress – Popup Maker, CVE-2025-54018

CVE, Research URL: CVE-2025-54018
Home page URL: Security reports for CM Popup Plugin for WordPress – Popup Maker
Application: CM Popup Plugin for WordPress – Popup Maker
Published on: Jul 16, 2025
Research Description: Missing Authorization vulnerability in CreativeMindsSolutions CM Pop-Up banners allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CM Pop-Up banners: from n/a through 1.8.4.
Affected versions: Min -, max 1.8.5.
Status: vulnerable

CM Popup Plugin for WordPress &#8211; Popup Maker, CVE-2025-54018