155 matches found
CVE-2023-40211 WordPress Post Grid Plugin <= 2.2.50 is vulnerable to Sensitive Data Exposure
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PickPlugins Post Grid Combo – 36+ Gutenberg Blocks.This issue affects Post Grid Combo – 36+ Gutenberg Blocks: from n/a through 2.2.50...
Essential Grid < 3.1.1 - Reflected XSS
Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-47684
Unauth. Reflected Cross-Site Scripting XSS vulnerability in ThemePunch OHG Essential Grid plugin = 3.1.0 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in ThemePunch OHG Essential Grid plugin = 3.1.0 versions...
WordPress Essential Grid Plugin <= 3.0.18 is vulnerable to Broken Access Control
Software Essential Grid Type Plugin Vulnerable versions = 3.0.18 Fixed in 3.0.19 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-47771 Patch priority High CVSS severity High 8.3 Developer Claim ownership PSID 7ac8b383b58b Credits Rafie Muhammad Patchstack...
CVE-2023-47684
CVE-2023-47684 is an unauthenticated, reflected Cross-Site Scripting (XSS) vulnerability in the ThemePunch OHG Essential Grid plugin for WordPress, affecting versions
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in G5Theme Grid Plus – Unlimited grid plugin = 1.3.2 versions...
CVE-2023-46209 WordPress Grid Plus Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in G5Theme Grid Plus – Unlimited grid plugin = 1.3.2 versions...
CVE-2023-41659
Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...
CVE-2023-32598
Unauth. Reflected Cross-Site Scripting XSS vulnerability in A. R. Jones Featured Image Pro Post Grid plugin = 5.14 versions...
CVE-2023-32598
Unauth. Reflected Cross-Site Scripting XSS vulnerability in A. R. Jones Featured Image Pro Post Grid plugin = 5.14 versions...
CVE-2023-32598 WordPress Featured Image Pro Post Grid Plugin <= 5.14 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in A. R. Jones Featured Image Pro Post Grid plugin = 5.14 versions...
CVE-2023-32598
CVE-2023-32598 affects the WordPress Featured Image Pro Post Grid plugin (
CVE-2023-28533
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in M Williams Cab Grid plugin = 1.5.15 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in M Williams Cab Grid plugin = 1.5.15 versions...
CVE-2023-28533 WordPress Cab Grid Plugin <= 1.5.15 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in M Williams Cab Grid plugin = 1.5.15 versions...
CVE-2023-28533
CVE-2023-28533 (Cab Grid) : WordPress Cab Grid plugin
CVE-2023-30785
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Video Grid plugin = 1.21 versions...
CVE-2023-30785
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Video Grid plugin = 1.21 versions...