Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wpxpo postx vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2023-3992
The PostX WordPress plugin prior to 3.0.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Wpxpo Postx
NA
CVE-2023-36385
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wpxpo PostX – Gutenberg Post Grid Blocks plugin <= 2.9.9 versions.
Wpxpo Postx
4
CVSSv2
CVE-2021-24652
The PostX – Gutenberg Blocks for Post Grid WordPress plugin prior to 2.4.10 performs incorrect checks before allowing any logged in user to perform some ajax based requests, allowing any user to modify, delete or add ultp_options values.
Wpxpo Postx - Gutenberg Blocks For Post Grid
3.5
CVSSv2
CVE-2021-24659
The PostX – Gutenberg Blocks for Post Grid WordPress plugin prior to 2.4.10 allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's block.
Wpxpo Postx - Gutenberg Blocks For Post Grid
3.5
CVSSv2
CVE-2021-24660
The PostX – Gutenberg Blocks for Post Grid WordPress plugin prior to 2.4.10, with Saved Templates Addon enabled, allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's shortcode.
Wpxpo Postx - Gutenberg Blocks For Post Grid
3.5
CVSSv2
CVE-2021-24661
The PostX – Gutenberg Blocks for Post Grid WordPress plugin prior to 2.4.10, with Saved Templates Addon enabled, allows users with Contributor roles or higher to read password-protected or private post contents the user is otherwise unable to read, given the post ID.
Wpxpo Postx - Gutenberg Blocks For Post Grid
NA
CVE-2024-32564
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Post Grid Team by WPXPO PostX – Gutenberg Blocks for Post Grid allows Stored XSS.This issue affects PostX – Gutenberg Blocks for Post Grid: from n/a up to a...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook