WordPress Otter Blocks – Gutenberg Block plugin <= 3.0.6 - Unauthenicated Path Traversal to Arbitrary Image View vulnerability

Unauthenicated Path Traversal to Arbitrary Image View vulnerability discovered by mikemyers in WordPress Plugin Otter - Gutenberg Block versions = 3.0.6...

WordPress Otter Blocks plugin <= 3.0.4 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability

Authenticated Author+ Stored Cross-Site Scripting via SVG File Upload vulnerability discovered by Francesco Carlucci in WordPress Plugin Otter - Gutenberg Block versions = 3.0.4...

WordPress Otter Blocks plugin <= 2.6.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'titleTag' vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'titleTag' vulnerability discovered by Ngô Thiên An ancorn in WordPress Plugin Otter - Gutenberg Block versions = 2.6.9...

WordPress Otter Blocks plugin <= 2.6.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Attributes vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Block Attributes vulnerability discovered by Ngô Thiên An ancorn in WordPress Plugin Otter - Gutenberg Block versions = 2.6.8...

WordPress Otter Blocks PRO Plugin <= 2.6.3 is vulnerable to Cross Site Scripting (XSS)

Software Otter Blocks PRO Type Plugin Vulnerable versions = 2.6.3 Fixed in 2.6.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1691 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 6a1016ee4455 Credits wesley wcraft Required...