WordPress plugin Post Grid and Gutenberg Blocks 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

PT-2024-38891 · WordPress · Post Grid/Gutenberg Blocks

Name of the Vulnerable Software and Affected Versions: The Post Grid and Gutenberg Blocks plugin for WordPress versions 2.2.87 through 2.2.90 Description: The issue is due to the plugin not properly restricting what user meta values can be updated and ensuring a form is active. This makes it...

WordPress ComboBlocks plugin <= 2.2.87 - Authenticated (Contributor+) Stored Cross-Site Scripting via Accordion Block vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Accordion Block vulnerability discovered by lowol in WordPress Plugin Post Grid and Gutenberg Blocks versions = 2.2.87...

PT-2024-38435 · WordPress · Gutenberg Blocks

Name of the Vulnerable Software and Affected Versions: The Gutenberg Blocks, Page Builder – ComboBlocks plugin for WordPress versions up to, and including, 2.2.87 Description: The issue is related to Stored Cross-Site Scripting via the plugin's Accordion block due to insufficient input sanitizati...