Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Popup by Supsystic allows Command Injection.This issue affects Popup by Supsystic: from n/a through 1.10.29.

CRITICAL Nov 18, 2024

CVE-2024-31421

Missing Authorization vulnerability in Supsystic Popup by Supsystic.This issue affects Popup by Supsystic: from n/a through 1.10.27.

MEDIUM Apr 15, 2024

CVE-2021-24275

The Popup by Supsystic WordPress plugin before 1.10.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue

UNKNOWN May 05, 2021

Popup by Supsystic

Versions

1.10.5

1.10.27

1.10.28

1.10.29

Recent CVEs

CVE-2024-52434

CVE-2024-31421

CVE-2021-24275