Vulnerabilities > Pixelgrade
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-18 | CVE-2024-12813 | Cross-site Scripting vulnerability in Pixelgrade Open Hours The Open Hours – Easy Opening Hours plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'open-hours-current-status' shortcode in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2024-09-10 | CVE-2024-8241 | Cross-site Scripting vulnerability in Pixelgrade Nova Blocks The Nova Blocks by Pixelgrade plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' attribute of the 'wp:separator' Gutenberg block in all versions up to, and including, 2.1.7 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2023-11-22 | CVE-2023-27633 | Unspecified vulnerability in Pixelgrade Customify Cross-Site Request Forgery (CSRF) vulnerability in Pixelgrade Customify – Intuitive Website Styling plugin <= 2.10.4 versions. | 8.8 |
| 2023-11-06 | CVE-2023-23702 | Unspecified vulnerability in Pixelgrade Comments Rating Auth. | 4.8 |
| 2023-10-16 | CVE-2023-45654 | Unspecified vulnerability in Pixelgrade Comments Rating Cross-Site Request Forgery (CSRF) vulnerability in Pixelgrade Comments Ratings plugin <= 1.1.7 versions. | 8.8 |
| 2023-10-16 | CVE-2023-45655 | Unspecified vulnerability in Pixelgrade Pixfields 0.7.0 Cross-Site Request Forgery (CSRF) vulnerability in PixelGrade PixFields plugin <= 0.7.0 versions. | 8.8 |
| 2023-09-04 | CVE-2023-40205 | Unspecified vulnerability in Pixelgrade Pixtypes Unauth. | 6.1 |
| 2023-07-11 | CVE-2023-23704 | Unspecified vulnerability in Pixelgrade Comments Rating Cross-Site Request Forgery (CSRF) vulnerability in Pixelgrade Comments Ratings plugin <= 1.1.6 versions. | 8.8 |
| 2023-07-11 | CVE-2023-25487 | Unspecified vulnerability in Pixelgrade Pixtypes Cross-Site Request Forgery (CSRF) vulnerability in Pixelgrade PixTypes plugin <= 1.4.14 versions. | 8.8 |
| 2023-05-09 | CVE-2022-46844 | Unspecified vulnerability in Pixelgrade Pixfields 0.7.0 Auth. | 5.4 |