Lucene search

CVE-2024-4400

🗓️ 16 May 2024 11:48:15Reported by [email protected]Type

The BoldGrid WordPress plugin allows stored cross-site scripting via an unknown parameter up to version 1.26.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Patchstack	WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor Plugin <= 1.26.4 is vulnerable to Cross Site Scripting (XSS)	16 May 202400:00	–	patchstack
WPVulnDB	Post and Page Builder by BoldGrid – Visual Drag and Drop Editor < 1.26.5 - Authenticated (Contributer+) Stored Cross-Site Scripting	15 May 202400:00	–	wpvulndb
CVE	CVE-2024-4400	16 May 202411:15	–	cve
Cvelist	CVE-2024-4400 Post and Page Builder by BoldGrid – Visual Drag and Drop Editor <= 1.26.4 - Authenticated (Contributer+) Stored Cross-Site Scripting	16 May 202411:05	–	cvelist
Vulnrichment	CVE-2024-4400 Post and Page Builder by BoldGrid – Visual Drag and Drop Editor <= 1.26.4 - Authenticated (Contributer+) Stored Cross-Site Scripting	16 May 202411:05	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 13, 2024 to May 19, 2024)	23 May 202415:00	–	wordfence

Nvd

Node

boldgrid post_and_page_builderRange<1.26.5wordpress

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset/3087230/
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/9bb6683a-b8e6-4776-880f-5b48966fc5c6

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 May 2024 11:15Current

6Medium risk

Vulners AI Score6

CVSS35.4

EPSS0.00055

CWE-79