Lucene search
K

4953 matches found

Patchstack
Patchstack
added 2026/01/30 5:32 a.m.4 views

WordPress Kadence Blocks plugin <= 3.2.53 - Authenticated (Admin+) Stored Cross-Site Scripting vulnerability

Authenticated Admin+ Stored Cross-Site Scripting vulnerability discovered by Dmitrii Ignatyev - CleanTalk Inc in WordPress Plugin Gutenberg Blocks by Kadence Blocks versions = 3.2.53...

4.8CVSS5.9AI score0.00455EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.6 views

PT-2026-5478

Name of the Vulnerable Software and Affected Versions Code Blocks version 20.03 Description The software contains a denial of service issue that allows attackers to crash the application. This is achieved by manipulating input in the FSymbols search field. Specifically, attackers can paste a larg...

7.5CVSS5.9AI score0.00373EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.7 views

PT-2026-5480

Name of the Vulnerable Software and Affected Versions Code Blocks version 17.12 Description Code Blocks 17.12 contains a local buffer overflow that allows attackers to execute arbitrary code. This is achieved by crafting a malicious file name with Unicode characters. Attackers can trigger the iss...

8.4CVSS6AI score0.00188EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/01/30 12:0 a.m.5 views

Code::Blocks security vulnerabilities

Code::Blocks is an open-source, cross-platform integrated development environment for C++ development. Version 20.03 of Code::Blocks contains a security vulnerability, which stems from improper handling of the FSymbols search field input. This vulnerability may cause the application to crash...

7.5CVSS5.8AI score0.00373EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/30 12:0 a.m.7 views

Code::Blocks security vulnerabilities

Code::Blocks is an open-source, cross-platform integrated development environment for C++ development. Version 17.12 of Code::Blocks contains a security vulnerability, which stems from a local buffer overflow in the file name field, potentially allowing arbitrary code to be executed...

8.4CVSS6.2AI score0.00188EPSS
Exploits0References4
Patchstack
Patchstack
added 2026/01/29 10:14 p.m.8 views

WordPress Ultimate Blocks plugin < 3.2.0 - Contributor+ Stored XSS vulnerability

Contributor+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Ultimate Blocks versions 3.2.0...

4.6CVSS5.9AI score0.00302EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2026/01/29 6:16 p.m.9 views

CVE-2026-24780

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.44, AutoGPT Platform's block execution endpoints both main web API and external API allow executing blocks by UUID...

9.4CVSS0.01147EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/01/29 5:39 p.m.3 views

CVE-2026-24780

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.44, AutoGPT Platform's block execution endpoints both main web API and external API allow executing blocks by UUID...

9.4CVSS6.2AI score0.01147EPSS
Exploits1References7Affected Software1
EUVD
EUVD
added 2026/01/29 5:39 p.m.8 views

EUVD-2026-4964

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.44, AutoGPT Platform's block execution endpoints both main web API and external API allow executing blocks by UUID...

9.4CVSS6.2AI score0.01147EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/01/29 3:19 p.m.8 views

CVE-2025-14283

The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the BlockArt Counter in all versions up to, and including, 2.2.14 due to insufficient input sanitization and outpu...

6.4CVSS6AI score0.00181EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/01/29 3:4 p.m.13 views

AutoGPT is Vulnerable to RCE via Disabled Block Execution

Summary AutoGPT Platform's block execution endpoints both main web API and external API allow executing blocks by UUID without checking the disabled flag. Any authenticated user can execute the disabled BlockInstallationBlock, which writes arbitrary Python code to the server filesystem and execut...

9.4CVSS6.6AI score0.01147EPSS
Exploits1References8Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/01/28 7:48 p.m.11 views

Malicious code in morty-package (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d87e4d2c5f3096d67a98e166e70ed6d4288c7d7554852e8d14bb60213f9a574b Package presents an extremely deep obfuscation of a code that is imported during installation. The exact behavior is unknown, but it includes loading encrypted...

6AI score
Exploits0References1
Snyk
Snyk
added 2026/01/28 4:33 p.m.5 views

Malicious Package

Overview css-blocks-ember is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
NVD
NVD
added 2026/01/28 12:15 p.m.3 views

CVE-2025-14283

The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the BlockArt Counter in all versions up to, and including, 2.2.14 due to insufficient input sanitization and outpu...

6.4CVSS0.00181EPSS
Exploits0References3
CVE
CVE
added 2026/01/28 11:23 a.m.21 views

CVE-2025-14283

CVE-2025-14283 - BlockArt Blocks (WordPress plugin) : A stored XSS vulnerability in BlockArt Counter is caused by insufficient input sanitization and output escaping on user-supplied attributes. It affects BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks, WordPress Block Plugin, Sections &...

6.4CVSS6AI score0.00181EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/28 11:23 a.m.5 views

CVE-2025-14283 BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library <= 2.2.14 - Authenticated (Contributor+) Stored Cross-Site Scripting

The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the BlockArt Counter in all versions up to, and including, 2.2.14 due to insufficient input sanitization and outpu...

6.4CVSS6AI score0.00181EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/28 11:23 a.m.5 views

EUVD-2025-206510

The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the BlockArt Counter in all versions up to, and including, 2.2.14 due to insufficient input sanitization and outpu...

6.4CVSS6AI score0.00181EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/28 11:23 a.m.4 views

CVE-2025-14283

The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the BlockArt Counter in all versions up to, and including, 2.2.14 due to insufficient input sanitization and outpu...

6.4CVSS6AI score0.00181EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/28 11:23 a.m.28 views

CVE-2025-14283 BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library <= 2.2.14 - Authenticated (Contributor+) Stored Cross-Site Scripting

The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the BlockArt Counter in all versions up to, and including, 2.2.14 due to insufficient input sanitization and outpu...

6.4CVSS0.00181EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/01/28 1:47 a.m.9 views

WordPress BlockArt Blocks plugin <= 2.2.14 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Webbernaut in WordPress Plugin BlockArt Blocks versions = 2.2.14...

6.4CVSS5.9AI score0.00181EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder