24 matches found
CVE-2026-24370
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Theme-one The Grid the-grid allows Stored XSS.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24369
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
EUVD-2026-15563
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
EUVD-2026-15565
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Theme-one The Grid the-grid allows Stored XSS.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24369
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24370
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Theme-one The Grid the-grid allows Stored XSS.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24370 WordPress The Grid plugin < 2.8.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Theme-one The Grid the-grid allows Stored XSS.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24369 WordPress The Grid plugin < 2.8.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24370
The CVE-2026-24370 refers to a Stored XSS in WordPress The Grid plugin prior to version 2.8.0, caused by improper neutralization of input during web page generation. Affected component: The Grid (
CVE-2026-24370 WordPress The Grid plugin < 2.8.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Theme-one The Grid the-grid allows Stored XSS.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24369 WordPress The Grid plugin < 2.8.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24369
Summary (CVE-2026-24369) The WordPress The Grid plugin, prior to version 2.8.0, contains a Missing Authorization vulnerability caused by incorrectly configured access control security levels. This is described as a Broken Access Control issue, potentially enabling unauthorized access to protected...
PT-2026-27852
Name of the Vulnerable Software and Affected Versions The Grid versions prior to 2.8.0 Description An authorization issue exists in Theme-one The Grid. The problem stems from incorrectly configured access control security levels, potentially allowing unauthorized access. Recommendations Update Th...
WordPress plugin The Grid 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. Versions of...
PT-2026-27853
Name of the Vulnerable Software and Affected Versions The Grid versions prior to 2.8.0 Description An issue exists in The Grid that allows for Stored Cross-Site Scripting XSS. This occurs due to improper neutralization of input during web page generation. The vulnerability allows an attacker to...
WordPress The Grid plugin < 2.8.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Phat RiO in WordPress Plugin The Grid versions 2.8.0...
CVE-2026-24368
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24368
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24368 WordPress The Grid plugin < 2.8.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...
CVE-2026-24368
CVE-2026-24368 describes a Missing Authorization vulnerability in the WordPress plugin The Grid (the-grid) prior to version 2.8.0. The issue—named in multiple sources (NVD, CVE listing, Patchstack, and RH/EUVD mirroring)—is a broken access control that could allow unauthorized access or actions d...