Skip to main content

Slick Popup

1 CVEs product

Monthly

CVE-2019-15867 HIGH POC This Week

The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13# password for the slickpopupteam account, after a Subscriber calls a certain AJAX action. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Slick Popup
NVD
CVSS 3.0
8.8
EPSS
2.1%
EPSS 2% CVSS 8.8
HIGH POC This Week

The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13# password for the slickpopupteam account, after a Subscriber calls a certain AJAX action. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Slick Popup
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy