CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/10/26 6:36 a.m.•2 views

CVE-2025-8588

The Gutenberg Blocks – PublishPress Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Marker Title' and 'Marker Description' parameters for the Maps block in versions up to, and including, 3.3.4 due to insufficient input sanitization and output escaping. This makes...

6.4CVSS5AI score0.00032EPSS

Exploits0References1

CNNVD•added 2025/10/26 12:0 a.m.•2 views

WordPress plugin PublishPress Blocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

6.4CVSS5.7AI score0.00032EPSS

Exploits0References4

NVD•added 2025/10/25 6:15 a.m.•3 views

CVE-2025-8588

6.4CVSS0.00032EPSS

Exploits0References3

OSV•added 2025/10/25 6:15 a.m.•2 views

CVE-2025-8588

6.4CVSS5.9AI score0.00032EPSS

Exploits0References3

Cvelist•added 2025/10/25 5:31 a.m.•6 views

CVE-2025-8588 Gutenberg Blocks – PublishPress Blocks Controls, Visibility, Reusable Blocks <= 3.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

6.4CVSS0.00032EPSS

Exploits0References3

CVE•added 2025/10/25 5:31 a.m.•13 views

CVE-2025-8588

CVE-2025-8588 affects the Gutenberg-based PublishPress Blocks (Maps block) in WordPress, allowing Stored XSS via Marker Title/Marker Description in versions up to 3.3.4. Exploitation requires authenticated access at contributor level or higher; CVSS v3.1 base score 6.4 (Medium). Wordfence reports...

6.4CVSS4.7AI score0.00032EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by