Post Grid, Slider & Carousel Ultimate

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:wpwax:post_grid,_slider_&_carousel_ultimate:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorWpwax (29e8d6fe-c9fa-59bf-8dd1-08817559bd7a)
ProductPost Grid, Slider & Carousel Ultimate (f9774af2-7bae-5ba0-84a6-062100ca417e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-24782 vulnerable 2026-06-03 14:59:56.897795 WordPress Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget plugin <= 1.6.10 - Local File Inclusion vulnerability
MEDIUM (6.5)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpWax Post Grid, Slider & Carousel Ultimate post-grid-carousel-ultimate allows PHP Local File Inclusion.This issue affects Post Grid, Slider & Carousel Ultimate: from n/a through <= 1.6.10.
Published: 2025-01-27T14:22:19.820Z
Updated: 2026-05-11T23:21:06.943Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-29925 vulnerable 2026-06-03 14:55:27.676975 WordPress Post Grid, Slider & Carousel Ultimate plugin <= 1.6.6 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpWax Post Grid, Slider & Carousel Ultimate allows Stored XSS.This issue affects Post Grid, Slider & Carousel Ultimate: from n/a through 1.6.6.
Published: 2024-03-27T07:26:09.835Z
Updated: 2026-04-28T16:09:20.453Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.