Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical0
High1
Medium2
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2024-09-26

CVE-2024-5799 - Cm Popup Plugin

The CM Pop-Up Banners for WordPress plugin before 1.7.3 does not sanitise and escape some of its popup fields, which could allow high privilege users such as Contributors to perform Cross-Site Scripting attacks.

PLUGIN Cm Popup

CVE-2024-5799

MEDIUM CVSS 4.8 2024-09-12
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2024-5004 - Cm Popup Plugin

The CM Popup Plugin for WordPress WordPress plugin before 1.6.6 does not sanitise and escape some of the campaign settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks

PLUGIN Cm Popup

CVE-2024-5004

MEDIUM CVSS 4.8 2024-07-22
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-30750 - Cm Popup Plugin

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CreativeMindsSolutions CM Popup Plugin for WordPress.This issue affects CM Popup Plugin for WordPress: from n/a through 1.5.10.

PLUGIN Cm Popup

CVE-2023-30750

HIGH CVSS 8.5 2023-12-20
Open Full Technical Breakdown
Scroll to top