Medium 4.3
2026-01-31< 6.1.2
Popup Box <= 6.1.1 - Cross-Site Request Forgery to Popup Status Change
Popup Box – Create Countdown, Coupon, Video, Contact Form Popups
Minimum safe version
6.1.2
Update to 6.1.2 or later to address 21 fixable vulnerabilities
Latest available6.2.7 ✓
N/A
2026-04-08< 5.5.0
Popup Box – Create Countdown, Coupon, Video, Contact Form Popups < 5.5.0 - Unauthenticated Stored Cross-Site Scripting
Medium 5.4
2025-12-30< 6.0.8
CVE-2025-69021
Medium 5.4
2025-05-19< 4.7.8
WordPress Popup box Plugin < 4.7.8 is vulnerable to Cross Site Scripting (XSS)
Medium 5.3
2024-11-16< 4.9.8
CVE-2024-10861
Medium 4.3
2024-11-01< 4.5.2
CVE-2024-37096
High 7.1
2024-05-06< 4.1.3
CVE-2024-34367
Medium 5.3
2024-05-02< 4.3.7
CVE-2024-3897
Medium 4.8
2024-02-12< 3.9.0
CVE-2023-6591
Medium 4.8
2023-12-04< 3.8.6
CVE-2023-5874
Medium 4.8
2023-12-04< 3.8.6
CVE-2023-5809
Medium 4.8
2023-11-20< 3.7.9
CVE-2023-5343
N/A
2023-11-13< 3.8.7
Popup Box <= 3.8.6 - Authenticated (Administrator+) Stored Cross-Site Scripting
Medium 4.8
2023-10-31< 3.7.2
CVE-2023-4390
N/A
2023-08-31< 3.7.2
WordPress Popup box Plugin < 3.7.2 is vulnerable to Cross Site Scripting (XSS)
N/A
2023-08-18< 3.7.1
Popup Box <= 3.7.0 - Authenticated(Administrator+) Stored Cross-Site Scripting
N/A
2023-08-29< 3.7.2
Popup Box <= 3.7.1 - Authenticated(Administrator+) Stored Cross-Site Scripting
High 7.1
2023-06-21< 3.4.5
CVE-2023-27414
N/A
2021-06-29< 2.3.4
Popup box <= 2.3.3 - Cross-Site Scripting
N/A
< 2.3.4
Multiple Plugins from AYS Pro - Reflected Cross-Site Scripting (XSS)
High 8.8
2021-08-02< 2.3.4
CVE-2021-24458