Searchenginejournal.com

WordPress Popup Builder Contains Serious Vulnerabilities

The vulnerability was discovered by WordFence on March 4, 2020 and subsequently contacted the developers. The WordPress plugin vulnerability affects Popup Builder versions that are less than version 3 ...
Threat Post

WordPress Plugin Bug in Popup Builder Threatens 100K Websites

The high-severity flaw allows malicious code injection into website pop-up windows. Two vulnerabilities – including a high-severity flaw – have been patched in a popular WordPress plugin called Popup ...
Threat Post

WordPress Pop-Up Builder Plugin Flaw Plagues 200K Sites

The flaw could have let attackers send out custom newsletters and delete newsletter subscribers from 200,000 affected websites. Developers of a plugin, used by WordPress websites for building pop-up ...
Bleeping Computer

Hackers exploit WordPress plugin flaw to infect 3,300 sites with malware

Hackers are breaching WordPress sites by exploiting a vulnerability in outdated versions of the Popup Builder plugin, infecting over 3,300 websites with malicious code. The flaw leveraged in the ...
Dark Reading

Nearly 7K WordPress Sites Compromised by Balada Injector

About 6,700 WordPress websites have been infected with the Balada Injector malware, after using a Popup Builder plug-in with a cross-site scripting (XSS) vulnerability tracked as CVE-2023-6000. The ...
Bleeping Computer

WordPress Plugin Bug Allows Malicious Code Injection on 100K Sites

Vulnerabilities in the Popup Builder WordPress plugin could allow unauthenticated attackers to inject malicious JavaScript code into popups displayed on tens of thousands of websites, to steal ...