Gutenverse@* Security Vulnerabilities and Issues — Gutenverse@* CVE List

Lucene search

JegstudioGutenverse*

5 matches found

CVE•added 2024/05/03 6:15 a.m.•73 views

CVE-2024-3692

The Gutenverse WordPress plugin before 1.9.1 does not validate the htmlTag option in various of its block before outputting it back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

6.1CVSS5.9AI score0.0013EPSS

CVE•added 2025/04/29 7:15 a.m.•52 views

CVE-2025-2893

The Gutenverse – Ultimate Block Addons and Page Builder for Site Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's countdown Block in all versions up to, and including, 2.2.1 due to insufficient input sanitization and output escaping on user supplied attribut...

6.4CVSS5.7AI score0.00043EPSS

CVE•added 2024/08/29 7:15 p.m.•49 views

CVE-2024-43920

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jegstudio Gutenverse allows Stored XSS.This issue affects Gutenverse: from n/a through 1.9.4.

6.5CVSS6.2AI score0.00064EPSS

CVE•added 2024/07/21 9:15 p.m.•39 views

CVE-2024-38785

6.5CVSS7AI score0.00064EPSS

CVE•added 2024/12/13 3:15 p.m.•29 views

CVE-2023-35875

Missing Authorization vulnerability in Jegstudio Gutenverse allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Gutenverse: from n/a through 1.8.5.

5.3CVSS5.4AI score0.00165EPSS