Hustle – Email Marketing, Lead Generation, Optins, Popups

Information

Software Type Plugin
Software Slug wordpress-popup (view on wordpress.org)
Software Status Active
Software Author wpmudev
Software Website wordpress.org
Software Downloads 3,863,582
Software Active Installs 100,000
Software Record Last Updated December 4, 2024

6 Vulnerabilities

Title Status CVE ID CVSS Researchers Date
Hustle – Email Marketing, Lead Generation, Optins, Popups <= 7.8.5 - Missing Authorization to Unauthorized Form Submission Patched CVE-2024-10580 5.3 Vijaysimha Reddy (vijaysimha) November 26, 2024
Hustle – Email Marketing, Lead Generation, Optins, Popups <= 7.8.5 - Missing Authorization to Unpublished Form Exposure Patched CVE-2024-10579 4.3 Vijaysimha Reddy (vijaysimha) November 25, 2024
Hustle <= 7.8.4 - Authenticated (Administrator+) Stored Cross-Site Scripting Patched CVE-2024-8492 4.4 Dmitrii Ignatyev July 29, 2024
Hustle <= 7.8.3 - Sensitive Information Exposure via Exposed Hubspot API Keys Patched CVE-2024-0368 8.6 Sean Murphy March 12, 2024
Hustle <= 7.6.4 = Authenticated (Administrator+) Stored Cross-Site Scripting Patched 4.4 April 6, 2023
Hustle <= 6.0.7 - Unauthenticated CSV Injection Patched CVE-2019-11872 7.8 Mark Parfeniuk May 24, 2019

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation