EUVD-2025-30479

Malicious code in bioql PyPI...

EUVD-2024-43336

Malicious code in bioql PyPI...

CVE-2025-59561

Missing Authorization vulnerability in hashthemes Smart Blocks smart-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart Blocks: from n/a through = 2.4...

CVE-2025-59561

Missing Authorization vulnerability in hashthemes Smart Blocks smart-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart Blocks: from n/a through = 2.4...

WordPress Smart Blocks Plugin <= 2.4 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Abu Hurayra in WordPress Plugin Smart Blocks versions = 2.4...

CVE-2025-59561 WordPress Smart Blocks Plugin <= 2.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in hashthemes Smart Blocks smart-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart Blocks: from n/a through = 2.4...

CVE-2025-59561 WordPress Smart Blocks Plugin <= 2.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in hashthemes Smart Blocks smart-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart Blocks: from n/a through = 2.4...

CVE-2025-59561

CVE-2025-59561 is described as a Missing Authorization issue in Smart Blocks WordPress plugin; no public technical details (affected versions, exploit, patch) are provided in the connected documents. Monitor for official advisories and updates.

WordPress plugin Smart Blocks 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

PT-2025-39039

Name of the Vulnerable Software and Affected Versions Smart Blocks versions through 2.4 Description A missing authorization issue exists in hashthemes Smart Blocks due to incorrectly configured access control security levels. This allows exploitation of the system. Recommendations Update Smart...

CVE-2024-49270

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Smart Blocks smart-blocks allows Stored XSS.This issue affects Smart Blocks: from n/a through = 2.0...

CVE-2024-49270

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Smart Blocks smart-blocks allows Stored XSS.This issue affects Smart Blocks: from n/a through = 2.0...

CVE-2024-49270 WordPress Smart Blocks plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in HashThemes Smart Blocks allows Stored XSS.This issue affects Smart Blocks: from n/a through 2.0...

CVE-2024-49270

CVE-2024-49270 is a stored XSS vulnerability in the HashThemes Smart Blocks WordPress plugin, affecting versions up to 2.0. The issue arises from improper input neutralization during web page generation. Patchstack and CVE records indicate the fix is in version 2.1. Other connected documents corr...

CVE-2024-49270 WordPress Smart Blocks plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hashthemes Smart Blocks smart-blocks allows Stored XSS.This issue affects Smart Blocks: from n/a through = 2.0...

WordPress plugin Smart Blocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

PT-2024-33409 · Hasthemes · Hashthemes Smart Blocks

Name of the Vulnerable Software and Affected Versions: HashThemes Smart Blocks versions prior to 2.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, where an attacker can inject...

WordPress Smart Blocks plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Smart Blocks versions = 2.0...

WordPress Smart Blocks Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software Smart Blocks Type Plugin Vulnerable versions = 2.0 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49270 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID fc8a42cfb8ae Credits João Pedro S Alcântara Kinorth Required...