EUVD-2023-46151

Malicious code in bioql PyPI...

CVE-2024-1664

The Responsive Gallery Grid WordPress plugin before 2.3.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-4091

The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

CVE-2024-4091

The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

CVE-2024-4091 Responsive Gallery Grid < 2.3.15 - Admin+ Stored XSS

The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

CVE-2024-4091 Responsive Gallery Grid < 2.3.15 - Admin+ Stored XSS

The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

WordPress plugin Responsive Gallery Grid 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...

Wordpress Responsive Gallery Grid plugin < 2.3.11 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by WPScan in WordPress Plugin Responsive Gallery Grid versions 2.3.11...

CVE-2024-1664 Responsive Gallery Grid < 2.3.11 - Admin+ Stored XSS

The Responsive Gallery Grid WordPress plugin before 2.3.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-1664 Responsive Gallery Grid < 2.3.11 - Admin+ Stored XSS

The Responsive Gallery Grid WordPress plugin before 2.3.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

WordPress Plugin Responsive Gallery Grid 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

PT-2024-18209 · WordPress · Responsive Gallery Grid

Name of the Vulnerable Software and Affected Versions: Responsive Gallery Grid WordPress plugin versions prior to 2.3.11 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, for...

Responsive Gallery Grid <= 2.3.10 - Settings Update via CSRF

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

CVE-2023-41659

Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...

CVE-2023-41659

Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...

CVE-2023-41659 WordPress Responsive Gallery Grid Plugin <= 2.3.10 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...

CVE-2023-41659

CVE-2023-41659 : WordPress plugin “Responsive Gallery Grid” (BDWM/Responsive Gallery Grid, &lt;= 2.3.10) suffers a Cross-Site Request Forgery (CSRF) vulnerability in its settings update, allowing unauthenticated actions on affected sites. Patchstack reports a fixed release in 2.3.14; prior report...

WordPress Plugin Responsive Gallery Grid Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

Cross site scripting

The Responsive Gallery Grid WordPress plugin before 2.3.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attac...