CVE-2022-4124 Information

Description

The Popup Manager WordPress plugin through 1.6.6 does not have authorisation and CSRF checks when deleting popups which could allow unauthenticated users to delete them

Reference

https://wpscan.com/vulnerability/60786bf8-c0d7-4d80-b189-866aba79bce2