25 matches found
CVE-2024-34372
Missing Authorization vulnerability in AddonMaster Post Grid Master.This issue affects Post Grid Master: from n/a through 3.4.7...
CVE-2024-34372
Missing Authorization vulnerability in AddonMaster Post Grid Master.This issue affects Post Grid Master: from n/a through 3.4.7...
CVE-2024-34372
CVE-2024-34372 is a Missing Authorization vulnerability in the Post Grid Master (AddonMaster) plugin, affecting Post Grid Master versions up to 3.4.7. Public records from Red Hat and Wordfence corroborate the issue as Missing Authorization with a CVSS v3.1 base score of 5.3 (Medium). The Patch st...
CVE-2024-34390
CVE-2024-34390 is a stored XSS in WordPress plugin Post Grid Master (Ajax Filter Everything) that affects Post Grid Master versions up to 3.4.8 (and from n/a through 3.4.8). The issue arises from improper input neutralization during web page generation. The vulnerability has a CVSS v3.1 base scor...
PT-2024-25851 · Unknown · Addonmaster Post Grid Master
Name of the Vulnerable Software and Affected Versions: AddonMaster Post Grid Master versions 3.4.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. Recommendations:...