Skip to content

CVE-2023-36385 | PostX – Gutenberg Post Grid Blocks

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wpxpo PostX – Gutenberg Post Grid Blocks plugin <= 2.9.9 versions..This CVE has a CVSS3.1 score of 7.1 and a Base Severity of HIGH.

InfoDetails
CVE IDCVE-2023-36385
CVE StatePUBLISHED
BaseScore7.1
BaseSeverityHIGH
VectorStringCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
VersionNA

References for CVE-2023-36385 :
https://patchstack.com/database/vulnerability/ultimate-post/wordpress-postx-gutenberg-post-grid-blocks-plugin-2-9-9-cross-site-scripting-xss-vulnerability?_s_id=cve

Metric TypeMetric Score
AttackVector(AV)NETWORK
AttackComplexity(AC)LOW
PrivilegesRequired(PR)NONE
UserInteraction(UI)REQUIRED
Scope(S)CHANGED
Confidentiality(C)LOW
Availability(A)LOW
Integrity(I)LOW
Tags: