CVE-2017-2284

MEDIUM

Popup Maker <1.6.5 - XSS

Title source: llm

Description

Cross-site scripting vulnerability in Popup Maker prior to version 1.6.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (4)

Scores

CVSS v3 6.1
EPSS 0.0054
EPSS Percentile 67.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (50)
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
code-atlantic/popup_maker
... and 40 more
Published Aug 02, 2017
Tracked Since Feb 18, 2026