5 matches found
UBUNTU-CVE-2026-46130
In the Linux kernel, the following vulnerability has been resolved: dm-verity-fec: fix reading parity bytes split across blocks take 3 fecdecodebufs assumes that the parity bytes of the first RS codeword it decodes are never split across parity blocks. This assumption is false. Consider...
CVE-2025-48270
CVE-2025-48270 targets the WordPress SKT Blocks plugin with a DOM‑based XSS caused by improper input neutralization during web page generation. Affected software is SKT Blocks versions n/a through 2.2. Multiple connected sources confirm the vulnerability class and vendor/product, including CVE re...
CVE-2024-50502 WordPress Cozy Blocks plugin <= 2.0.18 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CozyThemes Cozy Blocks cozy-addons allows DOM-Based XSS.This issue affects Cozy Blocks: from n/a through = 2.0.18...
PT-2024-32954 · Unknown · Skt Blocks
Name of the Vulnerable Software and Affected Versions: SKT Blocks – Gutenberg based Page Builder versions 1.6 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, which can...
WordPress Elegant Blocks Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)
Software Elegant Blocks Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34769 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7e0e4f032069 Credits 4rCanJ0x! Required privilege Contributor...