CVE-2025-10861 | Popup Builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers Plugin server-side request forgery

A vulnerability classified as critical was found in Popup Builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers Plugin up to 2.1.3 on WordPress. This affects an unknown part. Executing manipulation can lead to server-side request forgery.

This vulnerability is registered as CVE-2025-10861. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More