Vulnerabilities > Pickplugins > Post Grid
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-01 | CVE-2020-35936 | Cross-site Scripting vulnerability in Pickplugins Post Grid and Team Showcase Stored Cross-Site Scripting (XSS) vulnerabilities in the Post Grid plugin before 2.0.73 for WordPress allow remote authenticated attackers to import layouts including JavaScript supplied via a remotely hosted crafted payload in the source parameter via AJAX. | 8.0 |