Themehunk Wp Popup Builder — known CVE vulnerabilities
Every CVE whose affected-product data names Themehunk Wp Popup Builder, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2024-9061 — CVSS 7.3 (high): The The WP Popup Builder – Popup Forms and Marketing Lead Generation plugin for WordPress is vulnerable to arbitrary shortcode execution…
CVE-2022-2404 — CVSS 6.1 (medium): The WP Popup Builder WordPress plugin before 1.2.9 does not sanitise and escape a parameter before outputting it back in the page, leading…
CVE-2025-62902 — CVSS 5.3 (medium): Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ThemeHunk WP Popup Builder wp-popup-builder…
CVE-2022-2405 — CVSS 4.3 (medium): The WP Popup Builder WordPress plugin before 1.2.9 does not have authorisation and CSRF check in an AJAX action, allowing any authenticated…