CVE-2023-40211

HIGH EXPLOITED NUCLEI

Pickplugins Post Grid Combo < 2.2.51 - Information Disclosure

Title source: rule

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in PickPlugins Post Grid Combo – 36+ Gutenberg Blocks.This issue affects Post Grid Combo – 36+ Gutenberg Blocks: from n/a through 2.2.50.

Nuclei Templates (1)

Post Grid <= 2.2.50 - Information Exposure via REST API
HIGHVERIFIEDby daffainfo
FOFA: body="/wp-content/plugins/post-grid-combo/"

References (1)

Scores

CVSS v3 7.5
EPSS 0.3677
EPSS Percentile 97.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

VulnCheck KEV 2023-08-14
CWE
CWE-200
Status published
Products (1)
pickplugins/post_grid_combo < 2.2.51
Published Nov 30, 2023
Tracked Since Feb 18, 2026