Lucene search
+L

3 matches found

Vulnrichment
Vulnrichment
added 2024/07/02 5:32 a.m.13 views

CVE-2024-1427 The Post Grid <= 7.7.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via section title tag

The The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the section title tag attribute in all versions up to, and including, 7.7.1 due to insufficient input sanitization and output escaping on user...

6.4CVSS5.9AI score0.00341EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/02 5:32 a.m.47 views

CVE-2024-1427 The Post Grid <= 7.7.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via section title tag

The The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the section title tag attribute in all versions up to, and including, 7.7.1 due to insufficient input sanitization and output escaping on user...

6.4CVSS0.00341EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/07/02 12:0 a.m.19 views

WordPress The Post Grid Plugin <= 7.7.1 is vulnerable to Cross Site Scripting (XSS)

Software The Post Grid Type Plugin Vulnerable versions = 7.7.1 Fixed in 7.7.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1427 Patch priority Low CVSS severity Low 6.5 Developer Mamunur Rashid PSID a5074a7894c0 Credits wesley wcraft Required...

6.4CVSS5.8AI score0.00341EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder