2 matches found
CVE-2022-0448
The CVE-2022-0448 issue affects the WordPress CP Blocks plugin prior to 1.0.15. A stored Cross-Site Scripting vulnerability arises because the plugin does not sanitize or escape the License ID setting, potentially allowing high-privilege users to inject script even when unfiltered_html is disallo...
CVE-2023-41732
CVE-2023-41732 affects the WordPress plugin CP Blocks (CodePeople CP Blocks)