Vulnerabilities (CVE)

Filtered by vendor Ays-pro Subscribe
Filtered by product Popup Like Box
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-0641 1 Ays-pro 1 Popup Like Box 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The Popup Like box WordPress plugin before 3.6.1 does not sanitize and escape the ays_fb_tab parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.