4 matches found
CVE-2025-11824
The Cinza Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cgridskincontent' post meta field in all versions up to, and including, 1.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2025-11824
The Cinza Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cgridskincontent' post meta field in all versions up to, and including, 1.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
EUVD-2025-35347
The Cinza Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cgridskincontent' post meta field in all versions up to, and including, 1.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
WordPress plugin Cinza Grid 跨站脚本漏洞
WordPress Cinza Grid plugin is a lightweight WordPress plugin based on Isotope Waterfall Layout for creating responsive grid layouts that support the presentation of posts, pages or custom content types. WordPress Cinza Grid plugin suffers from a cross-site scripting vulnerability that stems from...