Shapedplugin Smart Post Show — known CVE vulnerabilities
Every CVE whose affected-product data names Shapedplugin Smart Post Show, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-0097 — CVSS 5.4 (medium): The Post Grid, Post Carousel, & List Category Posts WordPress plugin before 2.4.19 does not validate and escape some of its block options…
CVE-2024-8187 — CVSS 4.8 (medium): The Smart Post Show WordPress plugin before 3.0.1 does not sanitise and escape some of its settings, which could allow high privilege users…
CVE-2024-3996 — CVSS 3.5 (low): The Smart Post Show WordPress plugin before 2.4.28 does not sanitise and escape some of its settings, which could allow high privilege…