CVE-2025-32625

CVE-2025-32625 describes a reflected XSS vulnerability in WordPress Mobile Blocks (Mobile Pages) plugin/product “Mobile Blocks,” affecting versions from n/a up to 1.0.2. The connected Wordfence entry confirms the vulnerability class as Reflected Cross‑Site Scripting and lists the affected softwar...

WordPress Mobile blocks Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Mobile blocks Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2579144786ce Credits Rafie Muhammad Patchstack Required...

WordPress Mobile blocks plugin <= 1.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Mobile blocks plugin versions = 1.2. Solution Update the WordPress Mobile blocks plugin to the latest available version at least 1.2.1...

WordPress Mobile blocks plugin <= 1.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Mobile blocks plugin versions = 1.2. Solution Update the WordPress Mobile blocks plugin to the latest available version at least 1.2.1...