Button Block@* Security Vulnerabilities and Issues — Button Block@* CVE List

Lucene search

BpluginsButton Block*

5 matches found

CVE•added 2025/01/15 4:15 p.m.•47 views

CVE-2025-22787

Missing Authorization vulnerability in bPlugins LLC Button Block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Button Block: from n/a through 1.1.5.

8.8CVSS4.7AI score0.0006EPSS

CVE•added 2025/01/09 4:16 p.m.•42 views

CVE-2025-22815

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins LLC Button Block allows Stored XSS.This issue affects Button Block: from n/a through 1.1.6.

6.5CVSS6.8AI score0.00036EPSS

CVE•added 2024/11/21 11:15 a.m.•40 views

CVE-2024-10671

The Button Block – Get fully customizable & multi-functional buttons plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.1.4 via the [btn_block] shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authe...

6.5CVSS4.4AI score0.00152EPSS

CVE•added 2024/12/19 7:15 a.m.•36 views

CVE-2024-12560

The Button Block – Get fully customizable & multi-functional buttons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.1.5 via the 'btn_block_duplicate_post' function. This makes it possible for authenticated attackers, with Contributor-lev...

6.5CVSS4.4AI score0.00137EPSS

CVE•added yesterday•2 views

CVE-2025-54694

Cross-Site Request Forgery (CSRF) vulnerability in bPlugins Button Block allows Cross Site Request Forgery. This issue affects Button Block: from n/a through 1.2.0.

4.3CVSS7.2AI score0.00029EPSS