GCVE - cpe:2.3:a:pixelgrade:pixfields:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:pixelgrade:pixfields:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Pixelgrade (`c7cb7ff4-ab70-50c1-8754-5497df2d0e7c`)
Product	Pixfields (`1e77d6c9-9213-5eb6-8cec-47339a82284e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/pixelgrade/pixfields`	purl2cpe	2026-06-01 10:18:08.451687

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-45655`	vulnerable	2026-06-03 14:53:08.355456	WordPress PixFields Plugin <= 0.7.0 is vulnerable to Cross Site Request Forgery (CSRF) MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in PixelGrade PixFields plugin <= 0.7.0 versions. Published: 2023-10-16T08:49:33.017Z Updated: 2026-04-28T16:08:43.897Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/pixfields/wordpress-pixfields-plugin-0-7-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve https://github.com/pixelgrade/pixfields/releases/tag/0.7.1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-46844`	vulnerable	2026-06-03 14:48:26.676735	WordPress PixFields Plugin <= 0.7.0 is vulnerable to Cross Site Scripting (XSS) MEDIUM (6.5) Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in PixelGrade PixFields plugin <= 0.7.0 versions. Published: 2023-05-09T11:44:29.829Z Updated: 2026-04-28T16:07:55.208Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/pixfields/wordpress-pixfields-plugin-0-7-0-auth-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.