CVE-2026-3498
- EPSS 0.03%
- Veröffentlicht 11.04.2026 01:24:59
- Zuletzt bearbeitet 13.04.2026 15:01:43
The BlockArt Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'clientId' block attribute in all versions up to, and including, 2.2.15. This is due to insufficient input sanitization and output escaping. This makes it p...
CVE-2025-14283
- EPSS 0.04%
- Veröffentlicht 28.01.2026 11:23:40
- Zuletzt bearbeitet 15.04.2026 00:35:42
The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the BlockArt Counter in all versions up to, and including, 2.2.14 d...
CVE-2025-13697
- EPSS 0.05%
- Veröffentlicht 02.12.2025 01:51:56
- Zuletzt bearbeitet 15.04.2026 00:35:42
The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘timestamp’ attribute in all versions up to, and including, 2.2...
CVE-2024-35704
- EPSS 0.14%
- Veröffentlicht 08.06.2024 15:15:54
- Zuletzt bearbeitet 21.11.2024 09:20:42
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPBlockArt BlockArt Blocks allows Stored XSS.This issue affects BlockArt Blocks: from n/a through 2.1.5.