Lucene search
K
WpdeveloperEssential Blocks

6 matches found

CVE
CVE
added 2023/06/09 5:33 a.m.65 views

CVE-2023-2086

CVE-2023-2086 : The WordPress plugin “Essential Blocks” (Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates) is vulnerable due to a missing capability check on the template_count function in versions up to and including 4.0.6, enabling subscriber-level attackers to view plugin...

4.3CVSS4.3AI score0.00572EPSS
CVE
CVE
added 2023/06/09 5:33 a.m.55 views

CVE-2023-2083

CVE-2023-2083 affects the WordPress plugin “Essential Blocks” (versions up to 4.0.6). The root cause is a missing capability check on the save function, with a nonce check that only runs when a nonce is provided; without a nonce, nonce verification is skipped and no capability check occurs. This ...

4.3CVSS4.3AI score0.00567EPSS
CVE
CVE
added 2023/06/09 5:33 a.m.52 views

CVE-2023-2084

CVE-2023-2084 affects the WordPress Essential Blocks plugin for WordPress, vulnerable up to version 4.0.6. The root cause is a missing capability check in the get function, allowing subscriber-level attackers to read or obtain plugin settings. Although a nonce check exists, it only runs when a no...

4.3CVSS4.3AI score0.00513EPSS
CVE
CVE
added 2023/06/09 5:33 a.m.50 views

CVE-2023-2087

CVE-2023-2087 affects the WordPress Essential Blocks plugin (versions

4.3CVSS4.2AI score0.00323EPSS
CVE
CVE
added 2025/01/08 7:18 a.m.50 views

CVE-2024-12045

CVE-2024-12045 is a stored XSS vulnerability in the Essential Blocks plugin for WordPress, affecting versions up to 5.0.9. The issue arises from insufficient sanitization/escaping of the Google Maps block maker title value, enabling an authenticated attacker with administrator privileges to injec...

4.8CVSS4.4AI score0.00236EPSS
CVE
CVE
added 2023/06/09 5:33 a.m.47 views

CVE-2023-2085

The CVE-2023-2085 entry concerns the WordPress plugin Essential Blocks (versions up to and including 4.0.6). The vulnerability arises from a missing capability check in the templates function, enabling unauthorized information exposure to subscriber-level users. Although a nonce check exists, it ...

4.3CVSS4.3AI score0.00607EPSS