Vk Blocks@1.57.0.5 Security Vulnerabilities and Issues — Vk Blocks@1.57.0.5 CVE List

Lucene search

Vektor-incVk Blocks1.57.0.5

2 matches found

CVE•added 2023/06/03 2:15 a.m.•37 views

CVE-2023-0583

The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST 'update_vk_blocks_options' function in versions up to, and including, 1.57.0.5. This allows authenticated attackers, with contributor-level permissions or above, to change plugin settings including default icons...

4.3CVSS4.8AI score0.00042EPSS

CVE•added 2023/06/03 2:15 a.m.•37 views

CVE-2023-0584

The VK Blocks plugin for WordPress is vulnerable to improper authorization via the REST 'update_options' function in versions up to, and including, 1.57.0.5. This allows authenticated attackers, with contributor-level permissions or above, to change the 'vk_font_awesome_version' option to an arbitr...

4.3CVSS4.9AI score0.00042EPSS