3 matches found
CVE-2024-2933
The Page Builder Gutenberg Blocks – CoBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Social Profiles widget in all versions up to, and including, 3.1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...
CVE-2024-2933 Page Builder Gutenberg Blocks – CoBlocks <= 3.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Social Profiles
The Page Builder Gutenberg Blocks – CoBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Social Profiles widget in all versions up to, and including, 3.1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...
CVE-2024-2933
CVE-2024-2933 affects the Page Builder Gutenberg Blocks – CoBlocks WordPress plugin. It is a Stored Cross-Site Scripting (XSS) vulnerability via the Social Profiles widget present in all versions up to 3.1.9, caused by insufficient input sanitization and output escaping on user-supplied attribute...