Getwid@* Security Vulnerabilities and Issues — Getwid@* CVE List

Lucene search

MotopressGetwid*

4 matches found

CVE•added 2024/01/08 7:15 p.m.•53 views

CVE-2023-6042

Any unauthenticated user may send e-mail from the site with any title or content to the admin

7.5CVSS7.5AI score0.00384EPSS

Web

CVE•added 2024/04/09 7:15 p.m.•47 views

CVE-2024-1948

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the block content in all versions up to, and including, 2.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor access a...

6.4CVSS7.6AI score0.00214EPSS

CVE•added 2024/02/05 10:15 p.m.•38 views

CVE-2023-6963

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to CAPTCHA Bypass in versions up to, and including, 2.0.4. This makes it possible for unauthenticated attackers to bypass the Captcha Verification of the Contact Form block by omitting 'g-recaptcha-response' from the 'data' array.

5.3CVSS5.6AI score0.00122EPSS

CVE•added 2024/02/05 10:15 p.m.•35 views

CVE-2023-6959

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the recaptcha_api_key_manage function in all versions up to, and including, 2.0.3. This makes it possible for authenticated attackers, with subscriber-level acc...

4.3CVSS4.6AI score0.00119EPSS