Keszites Simple Popup Newsletter — known CVE vulnerabilities
Every CVE whose affected-product data names Keszites Simple Popup Newsletter, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2021-34658 — CVSS 6.1 (medium): The Simple Popup Newsletter WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to the use of $_SERVER['PHP_SELF'] in the…