Visual Drag and Drop Editor Vulnerable to Stored XSS
CVE-2024-2888
5.4MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 26 March 2024
What is CVE-2024-2888?
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop Editor allows Stored XSS.This issue affects Post and Page Builder by BoldGrid – Visual Drag and Drop Editor: from n/a through 1.26.2.
Affected Version(s)
Post and Page Builder by BoldGrid – Visual Drag and Drop Editor <= 1.26.2