Vulnerability with the Popup Builder plugin

  • Resolved Alok Mishra

    (@alokchetaru)


    1 year, 9 months ago

    We are getting below message from our host service provider and had to deactivate this plugin. Please fix below issue with your next release.

    ————————————-

    The plugin has a vulnerability that allows unauthenticated visitors to view sensitive information (first name, last name, email address, and other personally identifiable information) when an administrator has imported subscribers from a CSV file.

    No fix is available.

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Support Jawada

    (@jawada)

    1 year, 9 months ago

    Hi @alokchetaru @giuseppedenver71 @macpheek

    Thank you for reaching out and bringing this to our attention. Our team is aware of the vulnerability, and a beta version addressing the issue is currently in the testing phase. If you would like to access the beta version, please don’t hesitate to contact us through our support page.  you can visit our support page, where you’ll find options to chat with us or send an email. Our team is available to assist you and will gladly address any concerns you may have.

    Best Regards

    Plugin Support Jawada

    (@jawada)

    1 year, 8 months ago

    Hello,

    A fix has already been implemented. The updated version of the plugin is currently in the testing phase. We appreciate your patience while we prepare for its release.

    If you’d like to access the updated version before the official release, please feel free to reach out through our dedicated support forum. You can visit us at https://help.popup-builder.com/en/, where you’ll find options to chat with us or send an email. Our team is here to help and will be happy to address any concerns you may have.

    Best regards,

    Thread Starter Alok Mishra

    (@alokchetaru)

    1 year, 8 months ago

    Good to know @jawada

    Plugin Support Jawada

    (@jawada)

    1 year, 6 months ago

    Hi @alokchetaru

    I hope you’re doing well!

    Have you had a chance to update New Popup to the latest version? We recently released Version 4.3.5, which includes important fixes and resolves a vulnerability issue.

    Please let us know

    Best Regards

    Thread Starter Alok Mishra

    (@alokchetaru)

    1 year, 6 months ago

    @jawada Absolutely, we’ll make the update. We truly appreciate your efforts in supporting the plugin.

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Vulnerability with the Popup Builder plugin’ is closed to new replies.