Lucene search
+L

177 matches found

patchstack
patchstack
added 2024/04/08 12:0 a.m.8 views

WordPress BoldGrid Easy SEO Plugin <= 1.6.14 is vulnerable to Sensitive Data Exposure

Software BoldGrid Easy SEO Type Plugin Vulnerable versions = 1.6.14 Fixed in 1.6.15 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2950 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 442e3877c2aa Credits Krzysztof Zając Requir...

5.3CVSS6.5AI score0.00508EPSS
Exploits0References3Affected Software1
osv
osv
added 2024/04/06 4:15 a.m.6 views

CVE-2024-2950

The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...

5.3CVSS5.8AI score0.00508EPSS
Exploits0References2
nvd
nvd
added 2024/04/06 4:15 a.m.17 views

CVE-2024-2950

The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...

5.3CVSS5.1AI score0.00508EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/04/06 3:24 a.m.14 views

CVE-2024-2950 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 - Information Exposure

The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...

5.3CVSS7.2AI score0.00508EPSS
Exploits0References2
cvelist
cvelist
added 2024/04/06 3:24 a.m.25 views

CVE-2024-2950 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 - Information Exposure

The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a password protecte...

5.3CVSS5.4AI score0.00508EPSS
Exploits0References2
cnnvd
cnnvd
added 2024/04/06 12:0 a.m.4 views

WordPress Plugin BoldGrid Easy SEO 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS8.3AI score0.00508EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2024/04/05 12:0 a.m.9 views

PT-2024-22926 · Boldgrid · Boldgrid Easy Seo

Name of the Vulnerable Software and Affected Versions: The BoldGrid Easy SEO plugin for WordPress versions up to, and including, 1.6.14 Description: The issue allows unauthenticated attackers to view the first 130 characters of a password-protected post, which can contain sensitive information, v...

5.3CVSS9.5AI score0.00508EPSS
Exploits0References7
wpvulndb
wpvulndb
added 2024/04/05 12:0 a.m.16 views

BoldGrid Easy SEO – Simple and Effective SEO < 1.6.15 - Information Exposure

Description The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information og:description This makes it possible for unauthenticated attackers to view the first 130 characters of a...

5.3CVSS6.6AI score0.00508EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/04/01 4:55 a.m.7 views

WordPress BoldGrid Easy SEO plugin <= 1.6.13 - Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description vulnerability

AuthenticatedContributor+ Stored Cross-Site Scripting via Meta Description vulnerability discovered by Webbernaut in WordPress Plugin BoldGrid Easy SEO versions = 1.6.13...

6.4CVSS6.5AI score0.00336EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/04/01 12:0 a.m.10 views

WordPress BoldGrid Easy SEO Plugin <= 1.6.13 is vulnerable to Cross Site Scripting (XSS)

Software BoldGrid Easy SEO Type Plugin Vulnerable versions = 1.6.13 Fixed in 1.6.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1692 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 43a66d9d31fc Credits Webbernaut Required...

6.4CVSS5.8AI score0.00336EPSS
Exploits0References3Affected Software1
nvd
nvd
added 2024/03/30 5:15 a.m.16 views

CVE-2024-1692

The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.7AI score0.00336EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/03/30 4:31 a.m.10 views

CVE-2024-1692 BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.13 - Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description

The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS7.4AI score0.00336EPSS
Exploits0References2
cnnvd
cnnvd
added 2024/03/30 12:0 a.m.4 views

WordPress Plugin BoldGrid Easy SEO 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.4CVSS7.6AI score0.00336EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2024/03/30 12:0 a.m.7 views

PT-2024-18228 · Boldgrid · Boldgrid Easy Seo

Name of the Vulnerable Software and Affected Versions: BoldGrid Easy SEO plugin for WordPress versions up to, and including, 1.6.13 Description: The issue is related to Stored Cross-Site Scripting via the meta description field due to insufficient input sanitization and output escaping on...

6.4CVSS8AI score0.00336EPSS
Exploits0References4
osv
osv
added 2024/03/26 6:15 a.m.5 views

CVE-2024-2888

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor allows Stored XSS.This issue affects Post and Page Builder by BoldGrid – Visual Drag and Drop Editor: from n/a through 1.26....

5.4CVSS7.3AI score0.00336EPSS
Exploits0References1
cve
cve
added 2024/03/26 5:41 a.m.83 views

CVE-2024-2888

CVE-2024-2888 is a Stored XSS vulnerability in BoldGrid Post and Page Builder – Visual Drag and Drop Editor for WordPress. The description (shared across sources) states improper input neutralization during web page generation, enabling stored XSS. Affected range is shown as requiring patching up...

6.5CVSS8.6AI score0.00336EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2024/03/26 5:41 a.m.28 views

CVE-2024-2888 WordPress Post and Page Builder by BoldGrid plugin <= 1.26.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor allows Stored XSS.This issue affects Post and Page Builder by BoldGrid – Visual Drag and Drop Editor: from n/a through 1.26....

6.5CVSS6.6AI score0.00336EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/03/26 12:0 a.m.6 views

WordPress Plugin Post and Page Builder by BoldGrid 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.5CVSS7.2AI score0.00336EPSS
Exploits0References2
patchstack
patchstack
added 2024/03/26 12:0 a.m.14 views

WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor Plugin <= 1.26.2 is vulnerable to Cross Site Scripting (XSS)

Software Post and Page Builder by BoldGrid – Visual Drag and Drop Editor Type Plugin Vulnerable versions = 1.26.2 Fixed in 1.26.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-2888 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a0283b5d07...

6.5CVSS6.6AI score0.00336EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2024/03/25 12:0 a.m.8 views

PT-2024-22623 · Boldgrid · Post/Page Builder By Boldgrid

Name of the Vulnerable Software and Affected Versions: Post and Page Builder by BoldGrid – Visual Drag and Drop Editor versions 1.26.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows...

6.5CVSS9.2AI score0.00336EPSS
Exploits0References5
Rows per page
Query Builder