Deserialization of Untrusted Data vulnerability in Themify Themify Popup allows Object Injection. This issue affects Themify Popup: from n/a through 1.4.3.
Update the WordPress Themify Popup plugin to the latest available version (at least 1.4.4).