158 matches found
CVE-2024-43296
Missing Authorization vulnerability in bPlugins LLC Flash & HTML5 Video allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flash & HTML5 Video: from n/a through 2.5.30...
CVE-2023-46084
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bPlugins LLC Icons Font Loader allows SQL Injection.This issue affects Icons Font Loader: from n/a through 1.1.2...
CVE-2025-32173
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins B Blocks b-blocks allows Stored XSS.This issue affects B Blocks: from n/a through = 2.0.0...
CVE-2025-26949
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Team Section Block team-section allows Stored XSS.This issue affects Team Section Block: from n/a through = 1.0.9...
CVE-2025-26945
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Info Cards info-cards allows Stored XSS.This issue affects Info Cards: from n/a through = 1.0.5...
CVE-2025-26938
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Countdown Timer countdown-time allows Stored XSS.This issue affects Countdown Timer: from n/a through = 1.2.6...
CVE-2025-26947
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Services Section block services-section allows Stored XSS.This issue affects Services Section block: from n/a through = 1.3.4...
CVE-2025-26939
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Counters Block counters-block allows Stored XSS.This issue affects Counters Block: from n/a through = 1.1.2...
CVE-2025-26881
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Sticky Content sticky-menu-block allows Stored XSS.This issue affects Sticky Content: from n/a through = 1.0.1...
CVE-2025-26937
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Icon List Block icon-list-block allows Stored XSS.This issue affects Icon List Block: from n/a through = 1.1.3...
CVE-2025-26883
Missing Authorization vulnerability in bPlugins Animated Text Block animated-text-block allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Animated Text Block: from n/a through = 1.0.7...
CVE-2025-26952
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Business Card Block business-card-block allows Stored XSS.This issue affects Business Card Block: from n/a through = 1.0.5...
CVE-2025-26949
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Team Section Block team-section allows Stored XSS.This issue affects Team Section Block: from n/a through = 1.0.9...
CVE-2025-26945
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Info Cards info-cards allows Stored XSS.This issue affects Info Cards: from n/a through = 1.0.5...
CVE-2025-26947
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Services Section block services-section allows Stored XSS.This issue affects Services Section block: from n/a through = 1.3.4...
CVE-2025-26937
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Icon List Block icon-list-block allows Stored XSS.This issue affects Icon List Block: from n/a through = 1.1.3...
CVE-2025-26939
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Counters Block counters-block allows Stored XSS.This issue affects Counters Block: from n/a through = 1.1.2...
CVE-2025-26881
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Sticky Content sticky-menu-block allows Stored XSS.This issue affects Sticky Content: from n/a through = 1.0.1...
CVE-2025-26949
CVE-2025-26949 is a stored XSS vulnerability in the WordPress plugin “Team Section block” (bPlugins Team Section Block). The Initial Description states an improper neutralization of input during web page generation, enabling Stored XSS, affecting Team Section Block versions from unspecified earli...
CVE-2025-26947
CVE-2025-26947 is a Stored XSS in the Services Section block (WordPress plugin) caused by improper input neutralization during web page generation. Affected: Services Section block