CVE-2025-7727

🗓️ 06 Aug 2025 06:38:39Reported by WordfenceType

Gutenverse plugin up to 3.1.0 vulnerable to Stored Cross-Site Scripting via specific blocks.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2025-7727	6 Aug 202506:54	–	circl
CNNVD	WordPress plugin Gutenverse 跨站脚本漏洞	6 Aug 202500:00	–	cnnvd
CNVD	WordPress Gutenverse Cross-Site Scripting Vulnerability	12 Aug 202500:00	–	cnvd
Cvelist	CVE-2025-7727 Gutenverse <= 3.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Text and Fun Fact Blocks	6 Aug 202506:38	–	cvelist
EUVD	EUVD-2025-23812	3 Oct 202520:07	–	euvd
NVD	CVE-2025-7727	6 Aug 202507:15	–	nvd
Patchstack	WordPress Gutenverse plugin <= 3.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Text and Fun Fact Blocks vulnerability	5 Aug 202523:05	–	patchstack
Positive Technologies	PT-2025-32118 · WordPress · Gutenverse	6 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-7727	8 Aug 202507:31	–	redhatcve
Vulnrichment	CVE-2025-7727 Gutenverse <= 3.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Text and Fun Fact Blocks	6 Aug 202506:38	–	vulnrichment

Vulners

Node

jegstudio gutenverse_ultimate_wordpress_fse_blocks_addons_&_ecosystemRange≤3.1.0wordpress

[
  {
    "vendor": "jegstudio",
    "product": "Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThanOrEqual": "3.1.0",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset/3338801/
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/76cfe806-a8d9-4249-b2d0-eb3a314ca69a
wordpress	www.wordpress.org/plugins/gutenverse/

15 Apr 2026 00:35Current

5.5Medium risk

Vulners AI Score5.5

CVSS 3.16.4

EPSS0.00163

SSVC

CWE-79