Vulnerability CVE-2023-6591
Published: 2024-02-12

Description:
The Popup Box WordPress plugin before 20.9.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

 References:
https://wpscan.com/vulnerability/f296de1c-b70b-4829-aba7-4afa24f64c51/
Copyright 2026, cxsecurity.com

 

Back to Top