The eVision Responsive Column Layout Shortcodes WordPress plugin through 2.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Sit...
5.4CVSS
5.3AI Score
0.001EPSS
Cross-Site Request Forgery (CSRF) vulnerability in Rise Themes Rise Blocks β A Complete Gutenberg Page Builder.This issue affects Rise Blocks β A Complete Gutenberg Page Builder: from n/a through 3.1.
8.8CVSS
8.6AI Score
0.001EPSS