WordPress Kenta Gutenberg Blocks plugin <= 1.3.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by 4rCanJ0x! Patchstack Alliance in WordPress Plugin Kenta Gutenberg Blocks Responsive Blocks and block templates library for Gutenberg Editor versions = 1.3.9...

WordPress Ultimate Gutenberg – Custom Block Templates Plugin <= 2.5.1 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Gutenberg – Custom Block Templates Type Plugin Vulnerable versions = 2.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 729999fffaff Credits Rafie...

WordPress Ultimate Gutenberg – Custom Block Templates plugin <= 2.5.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Ultimate Gutenberg – Custom Block Templates plugin versions = 2.5.1. Solution No patched version available...

WordPress Ultimate Gutenberg – Custom Block Templates plugin <= 2.5.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Ultimate Gutenberg – Custom Block Templates plugin versions = 2.5.1. Solution No patched version available...

XSS in client rendered block templates in rendr

Affected versions of rendr are vulnerable to cross-site scripting when client side rendering is done inside a block. Server side rendering is not affected and is properly escaped. Recommendation Update to version 1.1.4 or later...