1. CVE-Search
  2. CVE-2023-3292
ID CVE-2023-3292
Summary The grid-kit-premium WordPress plugin before 2.2.0 does not escape some parameters as well as generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
References
Vulnerable Configurations
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:-:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:-:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.7:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.7:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.8:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.8:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.9:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.9:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.10:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.10:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.11:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.11:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.12:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.12:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.13:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.13:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.14:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.14:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.15:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.15:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.16:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.16:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.17:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.17:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.18:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.18:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.19:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.19:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.20:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.20:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.21:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.21:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.22:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.22:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.23:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.23:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.24:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:1.8.24:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:2.0.0:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:2.0.0:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:2.1.0:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:2.1.0:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:2.1.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:wpsofts:portfolio_gallery\,_product_catalog_-_grid_kit_portfolio:2.1.1:*:*:*:*:wordpress:*:*
CVSS
Base: None
Impact:
Exploitability:
Access
VectorComplexityAuthentication
Impact
ConfidentialityIntegrityAvailability
Last major update 17-10-2024 - 21:35
Published 31-07-2023 - 10:15
Last modified 17-10-2024 - 21:35
Back to Top