Radiustheme

The Post Grid

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-30814

  • EPSS 0.42%
  • Veröffentlicht 27.03.2025 10:55:03
  • Zuletzt bearbeitet 27.03.2025 16:45:12

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RadiusTheme The Post Grid allows PHP Local File Inclusion. This issue affects The Post Grid: from n/a through 7.7.17.

6.5

CVE-2024-37481

  • EPSS 0.17%
  • Veröffentlicht 01.11.2024 15:15:28
  • Zuletzt bearbeitet 01.11.2024 20:24:53

Missing Authorization vulnerability in Post Grid Team by RadiusTheme The Post Grid allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects The Post Grid: from n/a through 7.7.4.

4.3

CVE-2024-37482

  • EPSS 0.21%
  • Veröffentlicht 01.11.2024 15:15:28
  • Zuletzt bearbeitet 01.11.2024 20:24:53

Missing Authorization vulnerability in Post Grid Team by RadiusTheme The Post Grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Post Grid: from n/a through 7.7.4.

5.4

CVE-2024-37483

  • EPSS 0.12%
  • Veröffentlicht 01.11.2024 15:15:28
  • Zuletzt bearbeitet 01.11.2024 20:24:53

Missing Authorization vulnerability in Post Grid Team by RadiusTheme The Post Grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Post Grid: from n/a through 7.7.4.

4.8

CVE-2024-3635

Exploit
  • EPSS 0.23%
  • Veröffentlicht 30.09.2024 06:15:13
  • Zuletzt bearbeitet 02.10.2024 14:30:24

The Post Grid WordPress plugin before 7.5.0 does not sanitise and escape some of its Grid settings, which could allow high privilege users such as Editor and above to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capabili...

4.3

CVE-2024-7418

  • EPSS 0.39%
  • Veröffentlicht 29.08.2024 11:15:28
  • Zuletzt bearbeitet 04.10.2024 16:01:06

The The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.7.11 via the post_query_guten and post_query functions. Thi...

5.4

CVE-2024-1427

  • EPSS 0.27%
  • Veröffentlicht 02.07.2024 06:15:02
  • Zuletzt bearbeitet 21.11.2024 08:50:33

The The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the section title tag attribute in all versions up to, and including, 7.7.1 due to insufficient in...

5.4

CVE-2024-35739

  • EPSS 0.14%
  • Veröffentlicht 08.06.2024 13:15:56
  • Zuletzt bearbeitet 14.04.2025 14:16:28

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in RadiusTheme The Post Grid allows Stored XSS.This issue affects The Post Grid: from n/a through 7.7.1.

8.8

CVE-2023-39923

  • EPSS 0.11%
  • Veröffentlicht 03.10.2023 12:15:10
  • Zuletzt bearbeitet 21.11.2024 08:16:02

Cross-Site Request Forgery (CSRF) vulnerability in RadiusTheme The Post Grid plugin <= 7.2.7 versions.

8.8

CVE-2022-46853

  • EPSS 0.09%
  • Veröffentlicht 23.05.2023 14:15:09
  • Zuletzt bearbeitet 15.04.2025 13:10:20

Cross-Site Request Forgery (CSRF) vulnerability in RadiusTheme The Post Grid plugin <= 5.0.4 versions.