Content Blocks@* Security Vulnerabilities and Issues — Content Blocks@* CVE List

Lucene search

VanderwijkContent Blocks*

4 matches found

CVE•added 2024/05/08 11:15 a.m.•55 views

CVE-2024-34566

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Johan van der Wijk Content Blocks (Custom Post Widget) allows Stored XSS.This issue affects Content Blocks (Custom Post Widget): from n/a through 3.3.0.

6.5CVSS6.6AI score0.00211EPSS

CVE•added 2024/09/17 11:15 p.m.•47 views

CVE-2024-44051

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Johan van der Wijk Content Blocks (Custom Post Widget) allows Stored XSS.This issue affects Content Blocks (Custom Post Widget): from n/a through 3.3.5.

6.5CVSS6.2AI score0.00064EPSS

CVE•added 2024/06/01 4:15 a.m.•25 views

CVE-2024-3564

The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3.0 via the plugin's 'content_block' shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to include and exec...

8.8CVSS8.9AI score0.00228EPSS

CVE•added 2024/06/01 4:15 a.m.•23 views

CVE-2024-3565

The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'content_block' shortcode in all versions up to, and including, 3.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it poss...

6.4CVSS5.9AI score0.00261EPSS