CVE-2024-30441

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
7.1HIGH
EPSS
0.1%
top 74.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Pickplugins Post Grid
Timeline
PublishedMar 29

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Post Grid allows Reflected XSS.This issue affects Post Grid: from n/a through 2.2.74.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:LExploitability: 2.8 | Impact: 3.7

Affected Packages1 packages

CVEListV5pickplugins/post_gridn/a2.2.74

🔴Vulnerability Details

2
CVEList
WordPress Combo Blocks plugin <= 2.2.74 - Reflected Cross Site Scripting (XSS) vulnerability2024-03-29
GHSA
GHSA-f84j-qc2w-2jwg: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Post Grid allows Reflected XSS2024-03-29
CVE-2024-30441 (HIGH CVSS 7.1) | Improper Neutralization of Input Du | cvebase.io