Vulnerabilities > G5Theme > Grid Plus > 1.3.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-30 | CVE-2023-5250 | Unspecified vulnerability in G5Theme Grid Plus 1.3.2 The Grid Plus plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 1.3.2 via a shortcode attribute. | 8.8 |
| 2023-10-30 | CVE-2023-5251 | Missing Authorization vulnerability in G5Theme Grid Plus 1.3.2 The Grid Plus plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'grid_plus_save_layout_callback' and 'grid_plus_delete_callback' functions in versions up to, and including, 1.3.2. | 5.4 |