Post Grid and Gutenberg Blocks
PickPlugins
Developer
N/A
Latest version
N/A
Installations
N/A
Last updated
Vulnerability history
1 present
26 fixed
11 Mitigation rules
- Insecure Direct Object References (IDOR) vulnerability<= 2.3.19Dec 3, 2025
- Broken Access Control vulnerability<= 2.3.17Oct 4, 2025
- Broken Access Control vulnerability<= 2.3.17Oct 4, 2025
- PHP Object Injection Vulnerability<= 2.3.11Aug 6, 2025
- Unauthenticated User Information Exposure vulnerability<= 2.3.6Feb 27, 2025
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 2.2.92Feb 21, 2025
- Unauthenticated Paid Order Creation vulnerability<= 2.3.5Feb 21, 2025
- Unauthenticated Privilege Escalation vulnerability2.2.85-2.3.3Jan 14, 2025
- Cross Site Scripting (XSS) vulnerability<= 2.2.93Oct 24, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.2.89Sep 27, 2024
- Authenticated (Subscriber+) Privilege Escalation vulnerability<= 2.2.90Sep 10, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Accordion Block vulnerability<= 2.2.87Aug 14, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.2.86Aug 7, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via redirectURL Parameter of Date Countdown Widget vulnerability<= 2.2.85aAug 1, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 2.2.80May 21, 2024
- Sensitive Data Exposure via API vulnerability<= 2.2.78Apr 22, 2024
- Unauthenticated Password Protected Posts Access vulnerability< 2.2.76Apr 15, 2024
- Reflected Cross Site Scripting (XSS) vulnerability<= 2.2.74Mar 28, 2024
- Information Exposure via get_posts API Endpoint vulnerability<= 2.2.68Mar 12, 2024
- Authenticated Cross-Site Scripting vulnerability<= 2.2.64Dec 15, 2023
- Sensitive Data Exposure vulnerability<= 2.2.50Aug 11, 2023
- Reflected Cross-Site Scripting (XSS) vulnerability<= 2.1.15Mar 15, 2022
- Reflected Cross-Site Scripting (XSS) vulnerability<= 2.1.15Mar 15, 2022
- PHP Object Injection vulnerability<= 2.0.72Oct 5, 2020
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 2.0.72Oct 5, 2020
- Arbitrary File Deletion<= 2.0.12Nov 8, 2016
- File Deletion Vulnerability<= 2.0.11Nov 8, 2016