3 matches found
WordPress Otter - Gutenberg Block Plugin <= 2.6.8 is vulnerable to Cross Site Scripting (XSS)
Software Otter - Gutenberg Block Type Plugin Vulnerable versions = 2.6.8 Fixed in 2.6.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3343 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8a0a461a8aca Credits Ngô Thiên An...
CVE-2024-3343
The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block attributes in all versions up to, and including, 2.6.8 due to insufficient input sanitization and output escaping on user supplied...
CVE-2024-3343
CVE-2024-3343 concerns Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE for WordPress. The issue is a Stored Cross-Site Scripting vulnerability in the plugin’s block attributes caused by insufficient input sanitization and output escaping, affecting all versions up to and ...