4 matches found
CVE-2024-8253
creationtimestamp| type| source ---|---|--- 2024-09-11 06:58:43+00:00| seen| https://t.me/cvedetector/5326 2024-09-16 19:13:31+00:00| seen| MISP/aaf97b2c-ad16-4ce6-928a-a440112d0fd3...
CVE-2024-8253 Post Grid and Gutenberg Blocks 2.2.87 - 2.2.90 - Authenticated (Subscriber+) Privilege Escalation
The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in all versions 2.2.87 to 2.2.90. This is due to the plugin not properly restricting what user meta values can be updated and ensuring a form is active. This makes it possible for authenticated attackers...
Over 40,000 WordPress Sites Affected by Privilege Escalation Vulnerability Patched in Post Grid and Gutenberg Blocks Plugin
📢 Did you know Wordfence runs aBug Bounty Program for all WordPress plugins and themes at no cost to vendors? Through October 7th, 2024, XSS vulnerabilities in all plugins and themes with =1,000 Active Installs are in scope for all researchers. In addition, through October 14th, 2024 , r esearche...
WordPress Post Grid and Gutenberg Blocks Plugin <= 2.2.90 is vulnerable to Privilege Escalation
Software Post Grid and Gutenberg Blocks Type Plugin Vulnerable versions = 2.2.90 Fixed in 2.2.91 OWASP Top 10 A4: Insecure Design Classification Privilege Escalation CVE CVE-2024-8253 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID 751ae97fca06 Credits wesley wcraft...