Lucene search
K
VanderwijkContent Blocks

5 matches found

CVE
CVE
added 2024/05/08 10:54 a.m.65 views

CVE-2024-34566

CVE-2024-34566 is a Stored XSS in Content Blocks (Custom Post Widget) for WordPress. The issue arises from improper input neutralization during web page generation. Affected: Content Blocks (Custom Post Widget)

6.5CVSS5.2AI score0.00254EPSS
CVE
CVE
added 2024/09/17 10:19 p.m.64 views

CVE-2024-44051

Content Blocks (Custom Post Widget) for WordPress is affected by CVE-2024-44051: a Stored XSS due to improper neutralization in web page generation. Impact is limited to versions

6.5CVSS5.9AI score0.00263EPSS
CVE
CVE
added 2025/02/20 9:21 a.m.55 views

CVE-2024-6432

CVE-2024-6432 affects the Content Blocks (Custom Post Widget) WordPress plugin. The issue is a Stored XSS via the content parameter of the plugin’s Content Block shortcode, due to insufficient input sanitization and output escaping. Affected versions are

6.4CVSS5.7AI score0.00284EPSS
CVE
CVE
added 2024/06/01 3:31 a.m.43 views

CVE-2024-3564

CVE-2024-3564 concerns the WordPress plugin Content Blocks (Custom Post Widget). Public sources confirm a Local File Inclusion vulnerability via the content_block shortcode in all versions up to 3.3.0, exploitable by authenticated attackers with contributor+ privileges to include and execute arbi...

8.8CVSS8.9AI score0.00618EPSS
CVE
CVE
added 2024/06/01 3:31 a.m.37 views

CVE-2024-3565

CVE-2024-3565 affects Content Blocks (Custom Post Widget) for WordPress. It is a Stored XSS via the content_block shortcode in all versions up to 3.3.0 due to insufficient input sanitization and output escaping on user attributes. Exploitation requires authenticated access at contributor level or...

6.4CVSS5.9AI score0.00314EPSS