Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerability reported in Post and Page Builder #580

Closed
SitesByYogi opened this issue Feb 19, 2024 · 0 comments · Fixed by #587
Closed

Vulnerability reported in Post and Page Builder #580

SitesByYogi opened this issue Feb 19, 2024 · 0 comments · Fixed by #587
Assignees
@jamesros161
Labels
bug
Milestone
1.26.3

Comments

@SitesByYogi
Copy link

Contacted the live support chat with vulnerability:

We want to report a vulnerability discovered in Post and Page Builder by BoldGrid – Visual Drag and Drop Editor WordPress plugin discovered by security researcher Savphill.
The original report is available here: https://patchstack.com/database/report-preview/2df6fa9f-1fe5-432e-b20e-af54b89d0eb0, and the PIN code to access the report information is here: 643ao6wCSU2QmJ2n
Note that we (Patchstack) are a CNA and provide a bug bounty program to security researchers. We do not ask for a reward and simply forward the details to you so it can get patched.
If you have any questions, please let us know. It would be great to get updates on the patching progress.
For general tips on how to patch a vulnerability, take a look here: https://patchstack.com/articles/common-plugin-vulnerabilities-how-to-fix-them/
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jamesros161 jamesros161

Labels
bug
Projects
None yet
Milestone
1.26.3
Development

Successfully merging a pull request may close this issue.

don't show wp_block widget for non-admin users BoldGrid/post-and-page-builder
2 participants
@jamesros161 @SitesByYogi