2 matches found
PT-2025-2161 · WordPress · Post Grid
Name of the Vulnerable Software and Affected Versions: Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget plugin for WordPress versions up to, and including, 1.6.10 Description: The issue allows authenticated attackers, with Contributor-level access and...
WordPress Spotlight Social Media Feeds Plugin <= 1.6.10 is vulnerable to Cross Site Request Forgery (CSRF)
Software Spotlight Social Media Feeds Type Plugin Vulnerable versions = 1.6.10 Fixed in 1.6.11 OWASP Top 10 A4: Insecure Design Classification Cross Site Request Forgery CSRF CVE CVE-2024-31381 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ea25d8b303d6 Credits Majed Refa...