Lucene search
K

27 matches found

Patchstack
Patchstack
added 2025/01/14 6:21 a.m.5 views

WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin <= 1.27.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin Post and Page Builder by BoldGrid versions = 1.27.5...

6.5CVSS5.8AI score0.00303EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/07/20 11:18 a.m.5 views

CVE-2024-6848 Post and Page Builder by BoldGrid – Visual Drag and Drop Editor <= 1.26.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via File Upload

The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via file uploads in all versions up to, and including, 1.26.6 due to insufficient input sanitization and output escaping affecting the boldgridcanvasimage AJAX...

6.4CVSS6.1AI score0.00466EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.6 views

PT-2024-30865 · Boldgrid · Post/Page Builder By Boldgrid

Name of the Vulnerable Software and Affected Versions: The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress versions up to, and including, 1.26.4 Description: The issue is related to Stored Cross-Site Scripting via an unknown parameter due to insufficient input...

6.4CVSS5.9AI score0.00263EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/03/26 12:0 a.m.4 views

WordPress Plugin Post and Page Builder by BoldGrid 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS7.2AI score0.00336EPSS
Exploits0References2
OSV
OSV
added 2023/10/06 1:15 p.m.2 views

CVE-2023-25480

Cross-Site Request Forgery CSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin = 1.24.1 versions...

8.8CVSS5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/06 12:0 a.m.5 views

PT-2023-20099 · Boldgrid · Post/Page Builder By Boldgrid

Name of the Vulnerable Software and Affected Versions: BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin versions = 1.24.1 Description: A Cross-Site Request Forgery CSRF issue affects the plugin, allowing unauthorized actions to be performed on behalf of the user...

8.8CVSS7.6AI score0.00214EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/10/06 12:0 a.m.5 views

WordPress Plugin Post and Page Builder by BoldGrid - Visual Drag and Drop Editor Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Post and Page Builder...

8.8CVSS6.5AI score0.00214EPSS
Exploits0References2
Rows per page
Query Builder