EUVD-2024-49146

Malicious code in bioql PyPI...

EUVD-2024-52475

Malicious code in bioql PyPI...

CVE-2024-54374

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sabri Sogrid sogrid allows PHP Local File Inclusion.This issue affects Sogrid: from n/a through = 1.5.6...

CVE-2024-54352

Cross-Site Request Forgery CSRF vulnerability in Sabri Sogrid sogrid allows Privilege Escalation.This issue affects Sogrid: from n/a through = 1.5.2...

WordPress Sogrid 1.5.6 Local File Inclusion Vulnerability

CVE-2024-54374 Sogrid = 1.5.6 - Unauthenticated Local File Inclusion Description The Sogrid plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 1.5.6. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server...

CVE-2024-54374

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sabri Sogrid sogrid allows PHP Local File Inclusion.This issue affects Sogrid: from n/a through = 1.5.6...

CVE-2024-54352

Cross-Site Request Forgery CSRF vulnerability in Sabri Sogrid sogrid allows Privilege Escalation.This issue affects Sogrid: from n/a through = 1.5.2...

CVE-2024-54374

CVE-2024-54374 - Sogrid Local File Inclusion (LFI) Root cause: Unauthenticated Local File Inclusion in the Sogrid WordPress plugin (up to version 1.5.6), enabling an attacker to include server files via a restricted-path flaw (path traversal). Impact (as stated in sources): High-severity vulnerab...

CVE-2024-54374 WordPress Sogrid plugin <= 1.5.6 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sabri Sogrid sogrid allows PHP Local File Inclusion.This issue affects Sogrid: from n/a through = 1.5.6...

CVE-2024-54352 WordPress Sogrid plugin <= 1.5.2 - CSRF to Privilege Escalation vulnerability

Cross-Site Request Forgery CSRF vulnerability in Sabri Taieb Sogrid allows Privilege Escalation.This issue affects Sogrid: from n/a through 1.5.2...

CVE-2024-54352 WordPress Sogrid plugin <= 1.5.2 - CSRF to Privilege Escalation vulnerability

Cross-Site Request Forgery CSRF vulnerability in Sabri Sogrid sogrid allows Privilege Escalation.This issue affects Sogrid: from n/a through = 1.5.2...

CVE-2024-54352

CVE-2024-54352 – Sogrid CSRF to Privilege Escalation (WordPress plugin) Affected: Sogrid (WordPress plugin) versions up to 1.5.2. Issue: Cross-Site Request Forgery vulnerability that enables privilege escalation within Sogrid. Impact: High (I/H, C/H, A/H per CVSS 3.1 metrics) with potential unaut...

WordPress plugin Sogrid 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

WordPress plugin Sogrid 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site reques...

PT-2024-36260 · Sogrid · Sogrid

Name of the Vulnerable Software and Affected Versions: Sogrid versions 1.5.6 and earlier Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion. This means that an attacker could...

WordPress Sogrid plugin <= 1.5.6 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by tahu.datar Patchstack Alliance in WordPress Plugin Sogrid versions = 1.5.6...

WordPress Sogrid plugin <= 1.5.2 - CSRF to Privilege Escalation vulnerability

CSRF to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Sogrid versions = 1.5.2...

CVE-2024-8392

CVE-2024-8392 affects WordPress plugin “Sogrid” (Post Grid Layouts with Pagination) for WordPress. The vulnerability is a Local File Inclusion (LFI) via the tab parameter in all versions up to and including 1.5.2, requiring Administrator-level access or higher. This enables an authenticated attac...

CVE-2024-8392 WordPress Post Grid Layouts with Pagination – Sogrid <= 1.5.6 - Authenticated (Admin+) Local File Inclusion

The WordPress Post Grid Layouts with Pagination – Sogrid plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.5.6 via the 'tab' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and...

CVE-2024-8392 WordPress Post Grid Layouts with Pagination – Sogrid <= 1.5.6 - Authenticated (Admin+) Local File Inclusion

The WordPress Post Grid Layouts with Pagination – Sogrid plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.5.6 via the 'tab' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and...