30 matches found
WordPress Post and Page Builder by BoldGrid plugin <= 1.26.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via File Upload vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via File Upload vulnerability discovered by wesley wcraft in WordPress Plugin Post and Page Builder by BoldGrid versions = 1.26.6...
CVE-2023-25480
Cross-Site Request Forgery CSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin = 1.24.1 versions...
CVE-2025-69345
Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.9...
CVE-2025-69345 WordPress Post and Page Builder by BoldGrid plugin <= 1.27.9 - Broken Access Control vulnerability
Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.9...
CVE-2025-69345 WordPress Post and Page Builder by BoldGrid plugin <= 1.27.9 - Broken Access Control vulnerability
Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.9...
PT-2026-1474
Name of the Vulnerable Software and Affected Versions BoldGrid Post and Page Builder versions through 1.27.9 Description An authorization issue exists in BoldGrid Post and Page Builder. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized...
WordPress Post and Page Builder by BoldGrid plugin <= 1.27.9 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by daroo in WordPress Plugin Post and Page Builder by BoldGrid versions = 1.27.9...
EUVD-2023-29435
Malicious code in bioql PyPI...
EUVD-2025-2973
Malicious code in bioql PyPI...
EUVD-2025-2844
Malicious code in bioql PyPI...
EUVD-2025-19699
Malicious code in bioql PyPI...
CVE-2025-52711
Cross-Site Request Forgery CSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Cross Site Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.8...
CVE-2025-52713
Server-Side Request Forgery SSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Server Side Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.8...
CVE-2025-52711
Cross-Site Request Forgery CSRF vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Cross Site Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.8...
CVE-2025-52711
CVE-2025-52711 is a CSRF vulnerability affecting WordPress plugin Post and Page Builder by BoldGrid – Visual Drag and Drop Editor, version 1.27.8 and earlier. The CVE entry is supported by multiple sources (NVD, CVE.org, Red Hat and Patchstack). Impact is described as Cross Site Request Forgery w...
CVE-2025-22759
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Stored XSS.This issue affects Post and Page Builder by BoldGrid: from n/a through = 1.27.5...
WordPress plugin Post and Page Builder by BoldGrid 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A path traversal vulnerability exists in...
WordPress Post and Page Builder by BoldGrid plugin <= 1.27.6 - Path Traversal to Authenticated (Contributor+) Arbitrary File Read via template_via_url Function vulnerability
Path Traversal to Authenticated Contributor+ Arbitrary File Read via templateviaurl Function vulnerability discovered by mikemyers in WordPress Plugin Post and Page Builder by BoldGrid versions = 1.27.6...
CVE-2025-23715 WordPress Post & Page Notes plugin <= 0.1.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in RaymondDesign Post & Page Notes post-page-notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through = 0.1.1...
CVE-2025-23715
CVE-2025-23715 is a CSRF-based vulnerability affecting RaymondDesign Post & Page Notes. The connected Red Hat entry confirms the issue and states that the CSRF allows Stored XSS in Post & Page Notes, affecting versions up to 0.1.1 (and n/a to 0.1.1 as described). Public references point to the Po...