Many WordPress Sites Affected by Vulnerabilities in ‘Popup Builder’ Plugin
Discovered by researchers at WebARX, the recently addressed issues are caused by the lack of authorization on most AJAX methods, and impact all Popup Builder versions up to 3.71.