177 matches found
WordPress BoldGrid Easy SEO Plugin <= 1.6.14 is vulnerable to Sensitive Data Exposure
Software BoldGrid Easy SEO Type Plugin Vulnerable versions = 1.6.14 Fixed in 1.6.15 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2950 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 442e3877c2aa Credits Krzysztof Zając Requir...
CVE-2024-2950
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
CVE-2024-2950
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
CVE-2024-2950 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 - Information Exposure
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
CVE-2024-2950 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 - Information Exposure
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...
WordPress Plugin BoldGrid Easy SEO 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2024-22926 · Boldgrid · Boldgrid Easy Seo
Name of the Vulnerable Software and Affected Versions: The BoldGrid Easy SEO plugin for WordPress versions up to, and including, 1.6.14 Description: The issue allows unauthenticated attackers to view the first 130 characters of a password-protected post, which can contain sensitive information, v...
BoldGrid Easy SEO – Simple and Effective SEO < 1.6.15 - Information Exposure
Description The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a...
WordPress BoldGrid Easy SEO plugin <= 1.6.13 - Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description vulnerability
AuthenticatedContributor+ Stored Cross-Site Scripting via Meta Description vulnerability discovered by Webbernaut in WordPress Plugin BoldGrid Easy SEO versions = 1.6.13...
WordPress BoldGrid Easy SEO Plugin <= 1.6.13 is vulnerable to Cross Site Scripting (XSS)
Software BoldGrid Easy SEO Type Plugin Vulnerable versions = 1.6.13 Fixed in 1.6.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1692 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 43a66d9d31fc Credits Webbernaut Required...
CVE-2024-1692
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-1692 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.13 - Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description
The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
WordPress Plugin BoldGrid Easy SEO 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
PT-2024-18228 · Boldgrid · Boldgrid Easy Seo
Name of the Vulnerable Software and Affected Versions: BoldGrid Easy SEO plugin for WordPress versions up to, and including, 1.6.13 Description: The issue is related to Stored Cross-Site Scripting via the meta description field due to insufficient input sanitization and output escaping on...
CVE-2024-2888
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor allows Stored XSS.This issue affects Post and Page Builder by BoldGrid – Visual Drag and Drop Editor: from n/a through 1.26....
CVE-2024-2888
CVE-2024-2888 is a Stored XSS vulnerability in BoldGrid Post and Page Builder – Visual Drag and Drop Editor for WordPress. The description (shared across sources) states improper input neutralization during web page generation, enabling stored XSS. Affected range is shown as requiring patching up...
CVE-2024-2888 WordPress Post and Page Builder by BoldGrid plugin <= 1.26.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor allows Stored XSS.This issue affects Post and Page Builder by BoldGrid – Visual Drag and Drop Editor: from n/a through 1.26....
WordPress Plugin Post and Page Builder by BoldGrid 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor Plugin <= 1.26.2 is vulnerable to Cross Site Scripting (XSS)
Software Post and Page Builder by BoldGrid – Visual Drag and Drop Editor Type Plugin Vulnerable versions = 1.26.2 Fixed in 1.26.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-2888 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a0283b5d07...
PT-2024-22623 · Boldgrid · Post/Page Builder By Boldgrid
Name of the Vulnerable Software and Affected Versions: Post and Page Builder by BoldGrid – Visual Drag and Drop Editor versions 1.26.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows...