EUVD-2024-35441

Malicious code in bioql PyPI...

CVE-2024-35682

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Themeisle Otter Blocks PRO.This issue affects Otter Blocks PRO: from n/a through 2.6.11...

CVE-2024-35682

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Themeisle Otter Blocks PRO.This issue affects Otter Blocks PRO: from n/a through 2.6.11...

CVE-2024-35682 WordPress Otter Blocks PRO plugin <= 2.6.11 - Authenticated Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Themeisle Otter Blocks PRO.This issue affects Otter Blocks PRO: from n/a through 2.6.11...

WordPress plugin Otter Blocks PRO security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-26630 · Unknown · Otter Blocks Pro

Name of the Vulnerable Software and Affected Versions: Otter Blocks PRO versions 2.6.11 and earlier Description: The issue is related to the exposure of sensitive information to an unauthorized actor. This affects the confidentiality of the data. There is no information provided about the estimat...

WordPress Otter Blocks PRO plugin <= 2.6.11 - Authenticated Sensitive Data Exposure vulnerability

Authenticated Sensitive Data Exposure vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Otter Blocks PRO versions = 2.6.11...

WordPress Otter Blocks PRO Plugin <= 2.6.11 is vulnerable to Sensitive Data Exposure

Software Otter Blocks PRO Type Plugin Vulnerable versions = 2.6.11 Fixed in 2.6.12 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-35682 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 106a1e47802a Credits Dave Jong Patchstack...

WordPress Plugin Otter Blocks PRO Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

WordPress Plugin Otter Blocks PRO Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. Cross-site scripting vulnerability...

WordPress Otter Blocks PRO Plugin <= 2.6.3 is vulnerable to Cross Site Scripting (XSS)

Software Otter Blocks PRO Type Plugin Vulnerable versions = 2.6.3 Fixed in 2.6.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1684 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 337ee76a7920 Credits wesley wcraft Required...

WordPress Otter Blocks PRO Plugin <= 2.6.3 is vulnerable to Cross Site Scripting (XSS)

Software Otter Blocks PRO Type Plugin Vulnerable versions = 2.6.3 Fixed in 2.6.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1691 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 6a1016ee4455 Credits wesley wcraft Required...

Otter Blocks PRO < 2.6.4 - Authenticated(Contributor+) Stored Cross-Site Scripting via File Field CSS

Description The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the contact form file field CSS metabox in all versions up to, and including, 2.6.3 due to insufficient input sanitization and output...