Lucene search
K

57 matches found

CNNVD
CNNVD
added 2025/08/01 12:0 a.m.3 views

WordPress plugin BlockSpare 跨站脚本漏洞

WordPress Blockspare plugin is a visual page builder plugin for WordPress that focuses on simplifying the website building process through drag and drop operations. WordPress Blockspare plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective...

6.4CVSS6AI score0.00245EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/07/31 10:1 p.m.8 views

WordPress Blockspare plugin <= 3.2.13.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Carousel and Image Slider Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Image Carousel and Image Slider Widgets vulnerability discovered by Webbernaut in WordPress Plugin Blockspare versions = 3.2.13.1...

6.4CVSS5.5AI score0.00245EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:1 a.m.7 views

CVE-2024-47363

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Blockspare Blockspare blockspare allows Stored XSS.This issue affects Blockspare: from n/a through = 3.2.4...

6.5CVSS5.9AI score0.00237EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:27 a.m.13 views

CVE-2024-43164

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Blockspare allows Stored XSS.This issue affects Blockspare: from n/a through 3.2.0...

6.5CVSS6.8AI score0.00245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 3:25 p.m.12 views

CVE-2025-47495

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Blockspare Blockspare blockspare allows Stored XSS.This issue affects Blockspare: from n/a through = 3.2.9...

6.5CVSS7.2AI score0.00209EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 3:16 p.m.16 views

CVE-2025-47495

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Blockspare Blockspare blockspare allows Stored XSS.This issue affects Blockspare: from n/a through = 3.2.9...

6.5CVSS0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 2:19 p.m.6 views

CVE-2025-47495 WordPress Blockspare plugin <= 3.2.9 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Blockspare Blockspare blockspare allows Stored XSS.This issue affects Blockspare: from n/a through = 3.2.9...

6.5CVSS8.6AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 2:19 p.m.22 views

CVE-2025-47495 WordPress Blockspare plugin <= 3.2.9 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Blockspare Blockspare blockspare allows Stored XSS.This issue affects Blockspare: from n/a through = 3.2.9...

6.5CVSS0.00209EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 2:19 p.m.48 views

CVE-2025-47495

Blockspare (WordPress plugin) contains a stored XSS via improper input neutralization in its rendering path for versions n/a–3.2.9 (CVE-2025-47495). Public records identify impact as Stored XSS with CVSSv3.1 base score 6.5 (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L). Remediation: upgrade to a patched v...

6.5CVSS7.2AI score0.00209EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/07 12:33 p.m.6 views

WordPress Blockspare plugin <= 3.2.9 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by zaim in WordPress Plugin Blockspare versions = 3.2.9...

6.5CVSS7.1AI score0.00209EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/05/07 12:0 a.m.3 views

WordPress plugin Blockspare 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.7AI score0.00209EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.4 views

PT-2025-20120 · Unknown · Blockspare

Name of the Vulnerable Software and Affected Versions: Blockspare versions n/a through 3.2.9 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS in Blockspare. Recommendations: For version...

6.5CVSS6.7AI score0.00209EPSS
Exploits0References3
NVD
NVD
added 2024/10/06 10:15 a.m.12 views

CVE-2024-47363

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Blockspare Blockspare blockspare allows Stored XSS.This issue affects Blockspare: from n/a through = 3.2.4...

6.5CVSS0.00237EPSS
Exploits0References1
CVE
CVE
added 2024/10/06 9:49 a.m.48 views

CVE-2024-47363

CVE-2024-47363 concerns the WordPress Blockspare plugin (versions

6.5CVSS5.9AI score0.00237EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/06 9:49 a.m.24 views

CVE-2024-47363 WordPress Blockspare plugin <= 3.2.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Blockspare Blockspare blockspare allows Stored XSS.This issue affects Blockspare: from n/a through = 3.2.4...

6.5CVSS0.00237EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/06 9:49 a.m.14 views

CVE-2024-47363 WordPress Blockspare plugin <= 3.2.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Blockspare allows Stored XSS.This issue affects Blockspare: from n/a through 3.2.4...

6.5CVSS6.8AI score0.00237EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/06 12:0 a.m.7 views

PT-2024-32580 · Unknown · Blockspare

Name of the Vulnerable Software and Affected Versions: Blockspare versions 3.2.4 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, which allows Stored XSS. This means that an attacker can inject malicious code into the web page,...

6.5CVSS6.2AI score0.00237EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/10/06 12:0 a.m.5 views

WordPress plugin Blockspare 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS6.2AI score0.00237EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/09/30 9:39 a.m.5 views

WordPress Blockspare plugin <= 3.2.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Blockspare versions = 3.2.4...

6.5CVSS6.1AI score0.00237EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/09/30 12:0 a.m.13 views

WordPress Blockspare Plugin <= 3.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Blockspare Type Plugin Vulnerable versions = 3.2.4 Fixed in 3.2.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47363 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 55058883d11e Credits Ngô Thiên An ancorn from VNPT-VCI Required...

6.5CVSS6.5AI score0.00237EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder