CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in WordPress Post Grid Master, which stems from insufficient input cleanup and output escaping, and can be exploited by an...

6.1CVSS6.3AI score0.00513EPSS

Exploits1References1

RedhatCVE•added 2025/07/26 9:34 a.m.•6 views

CVE-2025-5084

The Post Grid Master plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘argsArray'readmoretext'’ parameter in all versions up to, and including, 3.4.13 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

6.1CVSS6.6AI score0.00513EPSS

Exploits1References1

OSV•added 2025/07/24 10:15 a.m.•2 views

CVE-2025-5084

6.1CVSS6AI score0.00513EPSS

Exploits1References4

NVD•added 2025/07/24 10:15 a.m.•3 views

CVE-2025-5084

6.1CVSS0.00513EPSS

Exploits1References5

Vulnrichment•added 2025/07/24 9:22 a.m.•3 views

CVE-2025-5084 Post Grid Master <= 3.4.13 - Reflected Cross-Site Scripting via argsArray['read_more_text']

6.1CVSS6.1AI score0.00513EPSS

Exploits1References4

Cvelist•added 2025/07/24 9:22 a.m.•6 views

CVE-2025-5084 Post Grid Master <= 3.4.13 - Reflected Cross-Site Scripting via argsArray['read_more_text']

6.1CVSS0.00513EPSS

Exploits1References5

CVE•added 2025/07/24 9:22 a.m.•27 views

CVE-2025-5084

CVE-2025-5084 affects the WordPress plugin Post Grid Master (versions up to 3.4.13). The issue is a Reflected Cross-Site Scripting vulnerability via the argsArray['read_more_text'] parameter caused by insufficient input sanitization and output escaping, enabling unauthenticated attackers to injec...

6.1CVSS6AI score0.00513EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2025/07/24 12:0 a.m.•3 views

PT-2025-30644 · WordPress · Post Grid Master

Name of the Vulnerable Software and Affected Versions: Post Grid Master versions prior to 3.4.14 Description: The Post Grid Master plugin for WordPress is susceptible to Reflected Cross-Site Scripting due to insufficient input sanitization and output escaping. This allows unauthenticated attacker...

6.1CVSS6.1AI score0.00513EPSS

Exploits1References7

CNNVD•added 2025/07/24 12:0 a.m.•3 views

WordPress plugin Post Grid Master 跨站脚本漏洞

6.1CVSS6.2AI score0.00513EPSS

Exploits1References4

Patchstack•added 2025/07/23 9:34 p.m.•5 views

WordPress Post Grid Master plugin <= 3.4.13 - Reflected Cross-Site Scripting via argsArray['read_more_text'] vulnerability

Reflected Cross-Site Scripting via argsArray'readmoretext' vulnerability discovered by Alefe Souza in WordPress Plugin Post Grid Master versions = 3.4.13...

6.1CVSS6.1AI score0.00513EPSS

Exploits1References1Affected Software1

RedhatCVE•added 2025/06/08 1:19 p.m.•5 views

CVE-2025-30974

Missing Authorization vulnerability in Akhtarujjaman Shuvo Post Grid Master ajax-filter-posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Grid Master: from n/a through = 3.4.17...

8.8CVSS5.9AI score0.00279EPSS

Exploits0References1

NVD•added 2025/06/06 1:15 p.m.•4 views

CVE-2025-30974

8.8CVSS0.00279EPSS

Exploits0References1

OSV•added 2025/06/06 1:15 p.m.•1 views

CVE-2025-30974

Missing Authorization vulnerability in Akhtarujjaman Shuvo Post Grid Master allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Post Grid Master: from n/a through 3.4.13...

8.8CVSS5.8AI score0.00279EPSS

Exploits0References1

Vulnrichment•added 2025/06/06 12:54 p.m.•3 views

CVE-2025-30974 WordPress Post Grid Master plugin <= 3.4.17 - Broken Access Control vulnerability

4.3CVSS5.8AI score0.00279EPSS

Exploits0References1

Cvelist•added 2025/06/06 12:54 p.m.•15 views

CVE-2025-30974 WordPress Post Grid Master plugin <= 3.4.17 - Broken Access Control vulnerability

4.3CVSS0.00279EPSS

Exploits0References1

Rows per page