CVE-2025-53352

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in G5Theme Grid Plus grid-plus allows Reflected XSS.This issue affects Grid Plus: from n/a through = 3.3...

EUVD-2025-35464

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in G5Theme Grid Plus grid-plus allows Reflected XSS.This issue affects Grid Plus: from n/a through = 3.3...

CVE-2025-53352

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in G5Theme Grid Plus grid-plus allows Reflected XSS.This issue affects Grid Plus: from n/a through = 3.3...

CVE-2025-53352 WordPress Grid Plus plugin <= 3.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in G5Theme Grid Plus grid-plus allows Reflected XSS.This issue affects Grid Plus: from n/a through = 3.3...

CVE-2025-53352

CVE-2025-53352 concerns the WordPress Grid Plus plugin, affected versions through 3.3. The issue is a Reflected XSS caused by improper input neutralization during web page generation in the grid-plus component. This vulnerability could allow an attacker to inject and execute arbitrary scripts whe...

CVE-2025-53352 WordPress Grid Plus plugin <= 3.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in G5Theme Grid Plus grid-plus allows Reflected XSS.This issue affects Grid Plus: from n/a through = 3.3...

WordPress plugin Grid Plus 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

PT-2025-43258

Name of the Vulnerable Software and Affected Versions G5Theme Grid Plus versions through 3.3 Description The software contains a flaw related to improper input handling during web page generation, specifically a Reflected Cross-site Scripting XSS issue. This allows for the execution of malicious...

EUVD-2023-38138

Malicious code in bioql PyPI...

EUVD-2023-50452

Malicious code in bioql PyPI...

EUVD-2023-57576

Malicious code in bioql PyPI...

EUVD-2024-33548

Malicious code in bioql PyPI...

WordPress Grid Plus plugin <= 3.3 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Grid Plus versions = 3.3...

CVE-2023-46209

Unauth. Reflected Cross-Site Scripting XSS vulnerability in G5Theme Grid Plus – Unlimited grid plugin = 1.3.2 versions...

CVE-2023-34014

Missing Authorization vulnerability in G5Theme Grid Plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grid Plus: from n/a through 1.3.2...

CVE-2024-10910

The The Grid Plus – Unlimited grid layout plugin for WordPress is vulnerable to arbitrary shortcode execution via gridplusloadbycategory AJAX action in all versions up to, and including, 1.3.5. This is due to the software allowing users to execute an action that does not properly validate a value...

CVE-2023-34014

Missing Authorization vulnerability in g5theme Grid Plus grid-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grid Plus: from n/a through = 1.3.2...

CVE-2023-34014

Missing Authorization vulnerability in G5Theme Grid Plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grid Plus: from n/a through 1.3.2...

CVE-2023-34014 WordPress Grid Plus plugin <= 1.3.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in G5Theme Grid Plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grid Plus: from n/a through 1.3.2...

CVE-2023-34014

CVE-2023-34014 affects the WordPress Grid Plus plugin ≤ 1.3.2. The root cause is a missing authorization check (Broken Access Control), with CVSS v3.1 base score 5.4 (Medium). Patchstack notes a fix in 1.3.3; older versions are at risk due to misconfigured access control. Exploitation details are...