CVE-2025-47601

🗓️ 07 Jun 2025 04:37:52Reported by PatchstackType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 61 Views

Arbitrary option update leads to privilege escalation in WordPress MaxiBlocks plugin <= 2.1.0.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2025-47601	7 Jun 202505:00	–	circl
CNNVD	WordPress plugin MaxiBlocks 安全漏洞	7 Jun 202500:00	–	cnnvd
Cvelist	CVE-2025-47601 WordPress MaxiBlocks plugin <= 2.1.0 - Arbitrary Option Update to Privilege Escalation vulnerability	7 Jun 202504:37	–	cvelist
EUVD	EUVD-2025-17369	3 Oct 202520:07	–	euvd
NVD	CVE-2025-47601	7 Jun 202505:15	–	nvd
Patchstack	WordPress MaxiBlocks plugin <= 2.1.0 - Arbitrary Option Update to Privilege Escalation vulnerability	30 May 202507:33	–	patchstack
Positive Technologies	PT-2025-24335 · Christiaan Pieterse · Maxiblocks	7 Jun 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-47601	9 Jun 202505:21	–	redhatcve
VulnCheck KEV	VulnCheck KEV: CVE-2025-47601	30 May 202500:00	–	vulncheck_kev
Vulnrichment	CVE-2025-47601 WordPress MaxiBlocks plugin <= 2.1.0 - Arbitrary Option Update to Privilege Escalation vulnerability	7 Jun 202504:37	–	vulnrichment

Vulners

Node

christiaan_pieterse maxiblocksRange≤2.1.0wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "maxi-blocks",
    "product": "MaxiBlocks",
    "vendor": "Christiaan Pieterse",
    "versions": [
      {
        "changes": [
          {
            "at": "2.1.1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.1.0",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/Wordpress/Plugin/maxi-blocks/vulnerability/wordpress-maxiblocks-plugin-2-1-0-arbitrary-option-update-to-privilege-escalation-vulnerability

28 Apr 2026 16:12Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.18.8

EPSS0.00254

SSVC

CWE-862