Content Blocks Security Vulnerabilities and Issues — Content Blocks CVE List

Lucene search

VanderwijkContent Blocks

4 matches found

CVE•added 2024/05/08 11:15 a.m.•55 views

CVE-2024-34566

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Johan van der Wijk Content Blocks (Custom Post Widget) allows Stored XSS.This issue affects Content Blocks (Custom Post Widget): from n/a through 3.3.0.

6.5CVSS6.6AI score0.00211EPSS

CVE•added 2024/09/17 11:15 p.m.•47 views

CVE-2024-44051

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Johan van der Wijk Content Blocks (Custom Post Widget) allows Stored XSS.This issue affects Content Blocks (Custom Post Widget): from n/a through 3.3.5.

6.5CVSS6.2AI score0.00064EPSS

CVE•added 2025/02/20 10:15 a.m.•44 views

CVE-2024-6432

The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter within the plugin's shortcode Content Block in all versions up to, and including, 3.3.5 due to insufficient input sanitization and output escaping. This makes it pos...

6.4CVSS5.7AI score0.00045EPSS

CVE•added 2024/06/01 4:15 a.m.•23 views

CVE-2024-3565

The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'content_block' shortcode in all versions up to, and including, 3.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it poss...

6.4CVSS5.9AI score0.00261EPSS