Lucene search
K

30 matches found

Patchstack
Patchstack
added 2026/02/02 8:40 a.m.7 views

WordPress Post and Page Builder by BoldGrid plugin <= 1.26.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via File Upload vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via File Upload vulnerability discovered by wesley wcraft in WordPress Plugin Post and Page Builder by BoldGrid versions = 1.26.6...

6.4CVSS5.3AI score0.00466EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:31 a.m.4 views

CVE-2023-25480

Cross-Site Request Forgery CSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin = 1.24.1 versions...

8.8CVSS6.7AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2026/01/06 5:15 p.m.3 views

CVE-2025-69345

Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.9...

4.3CVSS0.00152EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/06 4:36 p.m.3 views

CVE-2025-69345 WordPress Post and Page Builder by BoldGrid plugin <= 1.27.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.9...

4.3CVSS6.3AI score0.00152EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/06 4:36 p.m.27 views

CVE-2025-69345 WordPress Post and Page Builder by BoldGrid plugin <= 1.27.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.9...

4.3CVSS0.00152EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.6 views

PT-2026-1474

Name of the Vulnerable Software and Affected Versions BoldGrid Post and Page Builder versions through 1.27.9 Description An authorization issue exists in BoldGrid Post and Page Builder. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized...

5.4CVSS6.3AI score0.00152EPSS
Exploits0References5
Patchstack
Patchstack
added 2026/01/05 1:10 p.m.6 views

WordPress Post and Page Builder by BoldGrid plugin <= 1.27.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Post and Page Builder by BoldGrid versions = 1.27.9...

5.4CVSS6.8AI score0.00152EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-29435

Malicious code in bioql PyPI...

8.8CVSS7.9AI score0.00214EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-2973

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00303EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-2844

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00303EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19699

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/23 8:41 a.m.6 views

CVE-2025-52711

Cross-Site Request Forgery CSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Cross Site Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.8...

4.3CVSS5.9AI score0.00121EPSS
Exploits0References1
NVD
NVD
added 2025/06/20 3:15 p.m.8 views

CVE-2025-52713

Server-Side Request Forgery SSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Server Side Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.8...

6.4CVSS0.00161EPSS
Exploits0References1
NVD
NVD
added 2025/06/20 3:15 p.m.5 views

CVE-2025-52711

Cross-Site Request Forgery CSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Cross Site Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.8...

4.3CVSS0.00121EPSS
Exploits0References1
CVE
CVE
added 2025/06/20 3:3 p.m.22 views

CVE-2025-52711

CVE-2025-52711 is a CSRF vulnerability affecting WordPress plugin Post and Page Builder by BoldGrid – Visual Drag and Drop Editor, version 1.27.8 and earlier. The CVE entry is supported by multiple sources (NVD, CVE.org, Red Hat and Patchstack). Impact is described as Cross Site Request Forgery w...

4.3CVSS5.9AI score0.00121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 11:37 a.m.8 views

CVE-2025-22759

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Stored XSS.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.5...

6.5CVSS7.2AI score0.00303EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/06 12:0 a.m.4 views

WordPress plugin Post and Page Builder by BoldGrid 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A path traversal vulnerability exists in...

6.5CVSS8.4AI score0.0065EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/02/05 10:0 p.m.4 views

WordPress Post and Page Builder by BoldGrid plugin <= 1.27.6 - Path Traversal to Authenticated (Contributor+) Arbitrary File Read via template_via_url Function vulnerability

Path Traversal to Authenticated Contributor+ Arbitrary File Read via templateviaurl Function vulnerability discovered by mikemyers in WordPress Plugin Post and Page Builder by BoldGrid versions = 1.27.6...

6.5CVSS6.9AI score0.0065EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/16 8:6 p.m.12 views

CVE-2025-23715 WordPress Post & Page Notes plugin <= 0.1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in RaymondDesign Post & Page Notes post-page-notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through = 0.1.1...

7.1CVSS8.6AI score0.0018EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 8:6 p.m.56 views

CVE-2025-23715

CVE-2025-23715 is a CSRF-based vulnerability affecting RaymondDesign Post & Page Notes. The connected Red Hat entry confirms the issue and states that the CSRF allows Stored XSS in Post & Page Notes, affecting versions up to 0.1.1 (and n/a to 0.1.1 as described). Public references point to the Po...

7.1CVSS7.2AI score0.0018EPSS
Exploits0References1
Rows per page
Query Builder