Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Post Grid Combo 2.1.13

  • Severity: high-risk
  • Status: Fixed
  • Publication: December 15, 2021

The Post Grid plugin for WordPress is a software that has a security issue in versions 2.1.12 and lower. This means that people who have enough access to the plugin can use it to get access to sensitive information from the database. This happens because of the lack of protection and security measures for user input, and because of the existing SQL query not being properly setup.

Detected in:

Gutenberg Blocks, Page Builder – ComboBlocks fixed vulnerable versions:
Post Grid fixed vulnerable versions: >= * < 2.1.13
Post Grid and Gutenberg Blocks fixed vulnerable versions:
Post Grid and Gutenberg Blocks – ComboBlocks fixed vulnerable versions:
Post Grid By PickPlugins fixed vulnerable versions:
Post Grid Combo – 36+ Blocks for Gutenberg fixed vulnerable versions:
Post Grid Combo – 36+ Gutenberg Blocks fixed vulnerable versions:
Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel – Combo Blocks fixed vulnerable versions:
Post Grid, Posts Slider, Posts Carousel, Post Filter, Post Masonry fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.