Lucene search
K
WpdeveloperEssential Blocks

9 matches found

CVE
CVE
added 2025/03/08 11:16 a.m.91 views

CVE-2025-1664

CVE-2025-1664 affects the WordPress plugin Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates . The vulnerability is a Stored Cross-Site Scripting via the Parallax slider in all versions up to 5.3.1 due to insufficient input sanitization and output escaping. Exploitation requi...

6.4CVSS5.7AI score0.00203EPSS
CVE
CVE
added 2025/02/26 7:1 a.m.75 views

CVE-2024-13803

CVE-2024-13803 concerns the WordPress plugin Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates, affecting all versions up to 5.2.3. The vulnerability is a Stored Cross-Site Scripting via the data-marker parameter, caused by insufficient input sanitization and output escaping....

6.4CVSS5.8AI score0.00446EPSS
CVE
CVE
added 2024/05/18 4:30 a.m.70 views

CVE-2024-4891

CVE-2024-4891 affects the WordPress plugin Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates. Root cause is insufficient input sanitization and output escaping in the tagName parameter, enabling Stored XSS. Impact requires authenticated access (contributor+) to inject scripts...

6.4CVSS5.7AI score0.00468EPSS
CVE
CVE
added 2024/03/20 3:20 a.m.69 views

CVE-2024-2255

The CVE concerns the WordPress plugin Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates. It describes a Stored XSS flaw in the plugin’s widgets due to insufficient input sanitization and output escaping on user-supplied attributes (e.g., listStyle) in versions up to 4.5.2. Ex...

6.4CVSS7.4AI score0.00559EPSS
CVE
CVE
added 2024/10/05 2:51 p.m.60 views

CVE-2024-47385

CVE-2024-47385 is a stored XSS in the WordPress plugin “Essential Blocks for Gutenberg” (WPDeveloper). Public details indicate the vulnerability affects versions up to and including 4.8.4; exploitation is via improper neutralization of input during web page generation. The patch is available in v...

6.5CVSS5.9AI score0.00248EPSS
CVE
CVE
added 2024/03/13 3:27 p.m.57 views

CVE-2024-1854

CVE-2024-1854 (WordPress plugin: Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates) The vulnerability is a Stored XSS in the blockId parameter across all versions up to and including 4.5.1 of the Essential Blocks plugin for WordPress. The root cause is insufficient input sani...

6.4CVSS6.1AI score0.00427EPSS
CVE
CVE
added 2024/04/07 5:42 p.m.53 views

CVE-2024-31306

CVE-2024-31306 : In the WordPress plugin Essential Blocks – Page Builder Gutenberg Blocks (WPDeveloper) there is a Stored XSS vulnerability due to improper input handling during web page generation, affecting versions up to 4.5.3 . The root cause is insufficient input neutralization when renderin...

6.5CVSS8.6AI score0.00385EPSS
CVE
CVE
added 2024/12/13 2:22 p.m.52 views

CVE-2022-47594

CVE-2022-47594 affects the WordPress plugin Essential Blocks for Gutenberg (

6.5CVSS5.1AI score0.00419EPSS
CVE
CVE
added 2024/01/11 8:33 a.m.44 views

CVE-2023-7071

CVE-2023-7071 affects the WordPress plugin Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates. Versions up to and including 4.4.6 are vulnerable to Stored Cross-Site Scripting via the Table of Contents block due to insufficient input sanitization and output escaping. Exploitat...

6.4CVSS5.2AI score0.00408EPSS