Boldgrid

Post And Page Builder

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2025-69345

  • EPSS 0.05%
  • Veröffentlicht 06.01.2026 16:36:39
  • Zuletzt bearbeitet 27.04.2026 21:16:24

Missing Authorization vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post and Page Builder by BoldGrid: from n/a through <= ...

4.2

CVE-2025-52712

  • EPSS 0.1%
  • Veröffentlicht 14.08.2025 10:34:04
  • Zuletzt bearbeitet 23.04.2026 15:32:03

Path Traversal: '.../...//' vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Path Traversal.This issue affects Post and Page Builder by BoldGrid: from n/a through <= 1.27.8.

4.3

CVE-2025-52711

  • EPSS 0.08%
  • Veröffentlicht 20.06.2025 15:15:32
  • Zuletzt bearbeitet 23.04.2026 15:32:03

Cross-Site Request Forgery (CSRF) vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Cross Site Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through <= 1.27.8.

6.4

CVE-2025-52713

  • EPSS 0.16%
  • Veröffentlicht 20.06.2025 15:15:32
  • Zuletzt bearbeitet 23.04.2026 15:32:04

Server-Side Request Forgery (SSRF) vulnerability in BoldGrid Post and Page Builder by BoldGrid post-and-page-builder allows Server Side Request Forgery.This issue affects Post and Page Builder by BoldGrid: from n/a through <= 1.27.8.

6.5

CVE-2025-0859

  • EPSS 0.1%
  • Veröffentlicht 06.02.2025 10:15:08
  • Zuletzt bearbeitet 19.03.2025 20:35:32

The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.27.6 via the template_via_url() function. This makes it possible for authenticated attack...

5.4

CVE-2024-6848

Exploit
  • EPSS 3.79%
  • Veröffentlicht 20.07.2024 12:15:02
  • Zuletzt bearbeitet 20.03.2025 15:40:08

The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via file uploads in all versions up to, and including, 1.26.6 due to insufficient input sanitization and output esca...

5.4

CVE-2024-4400

  • EPSS 0.24%
  • Veröffentlicht 16.05.2024 11:15:48
  • Zuletzt bearbeitet 08.04.2026 18:21:48

The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plguin for WordPress is vulnerable to Stored Cross-Site Scripting via an unknown parameter in versions up to, and including, 1.26.4 due to insufficient input sanitization and output ...

5.4

CVE-2024-2888

  • EPSS 0.16%
  • Veröffentlicht 26.03.2024 06:15:09
  • Zuletzt bearbeitet 28.04.2026 19:23:54

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor allows Stored XSS.This issue affects Post and Page Builder by BoldGrid – Vi...

8.8

CVE-2023-25480

  • EPSS 0.07%
  • Veröffentlicht 06.10.2023 13:15:12
  • Zuletzt bearbeitet 19.03.2025 18:02:26

Cross-Site Request Forgery (CSRF) vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin <= 1.24.1 versions.