4 matches found
CVE-2026-56040 WordPress Gutenverse Form plugin <= 2.4.7 - Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS in Gutenverse Form = 2.4.7 versions...
WordPress Gutenverse plugin missing license vulnerability
The WordPress Gutenverse plugin is a plugin built specifically for WordPress sites, designed to enhance the Gutenberg editor and provide a richer page design and editing experience. WordPress Gutenverse plugin suffers from a missing authorization vulnerability that can be exploited by attackers t...
CVE-2025-66079
CVE-2025-66079 is a Missing Authorization vulnerability in WordPress Gutenverse Form (gutenverse-form) affecting versions through 2.2.0. The issue stems from broken access control/security level configuration, enabling exploitation due to inadequate authorization checks. Public sources (Wordfence...
WordPress Gutenverse Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)
Software Gutenverse Type Plugin Vulnerable versions = 1.9.2 Fixed in 1.9.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38785 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 73a432519c7f Credits João Pedro S Alcântara Kinorth Required...