Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Post Grid Master – Custom Post Types, Taxonomies & Ajax Filter Everything with Infinite Scroll, Load More, Pagination & Shortcode Builder 3.4.10

  • Severity: medium-risk
  • Status: Open
  • Publication: August 7, 2024

The Post Grid Master plugin used in WordPress has a security issue that can potentially harm websites. This vulnerability, known as Reflected Cross-Site Scripting, affects versions up to 3.4.10. It occurs because the plugin does not properly clean or filter user input, allowing attackers to insert harmful code into the website. This can happen if a user is tricked into clicking a link.

Detected in:

Post Grid Master — Post Grids & AJAX Filters fixed vulnerable versions:
Post Grid Master – Custom Post Types, Taxonomies & Ajax Filter Everything with Infinite Scroll, Load More, Pagination & Shortcode Builder open vulnerable versions: >= * <= 3.4.10

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.