Wpsoul

Greenshift

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4

CVE-2026-4895

  • EPSS 0.04%
  • Veröffentlicht 11.04.2026 01:24:58
  • Zuletzt bearbeitet 13.04.2026 15:01:43

The GreenShift - Animation and Page Builder Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 12.8.9 This is due to insufficient input sanitization and output escaping in the gspb_greenShift_bl...

5.3

CVE-2026-2371

  • EPSS 0.01%
  • Veröffentlicht 06.03.2026 23:22:58
  • Zuletzt bearbeitet 09.03.2026 13:35:34

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 12.8.3. This is due to missing authorization and post status validation in the `gspb_el_re...

5.3

CVE-2026-2589

  • EPSS 0.04%
  • Veröffentlicht 05.03.2026 23:21:30
  • Zuletzt bearbeitet 09.03.2026 13:36:08

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 12.8.3 via the automated Settings Backup stored in a publicly accessible file. This makes it...

6.4

CVE-2026-2593

  • EPSS 0.04%
  • Veröffentlicht 05.03.2026 21:24:06
  • Zuletzt bearbeitet 09.03.2026 13:36:08

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `_gspb_post_css` post meta value and the `dynamicAttributes` block attribute in all versions up to, and including, 12.8.5 due...

5.4

CVE-2026-1927

  • EPSS 0.03%
  • Veröffentlicht 05.02.2026 13:27:37
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the greenshift_app_pass_validation() function in all versions up to, and including, 12.6. This m...

6.4

CVE-2025-11841

  • EPSS 0.03%
  • Veröffentlicht 04.11.2025 01:50:26
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Chart Data attributes in all versions up to, and including, 12.2.7 due to insufficient input sanitization and output escaping...

4.3

CVE-2025-57884

  • EPSS 0.03%
  • Veröffentlicht 22.08.2025 12:15:31
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Missing Authorization vulnerability in wpsoul Greenshift greenshift-animation-and-page-builder-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Greenshift: from n/a through <= 12.1.1.

5.4

CVE-2025-30873

  • EPSS 0.13%
  • Veröffentlicht 27.03.2025 10:55:37
  • Zuletzt bearbeitet 01.04.2026 17:20:30

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpsoul Greenshift greenshift-animation-and-page-builder-blocks allows Stored XSS.This issue affects Greenshift: from n/a through <= 11.0.2.

5.4

CVE-2024-44005

  • EPSS 0.56%
  • Veröffentlicht 18.09.2024 00:15:09
  • Zuletzt bearbeitet 01.04.2026 16:17:48

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpsoul Greenshift greenshift-animation-and-page-builder-blocks allows Stored XSS.This issue affects Greenshift: from n/a through <= 9.3.7.

5.4

CVE-2024-35765

  • EPSS 0.14%
  • Veröffentlicht 19.06.2024 11:15:51
  • Zuletzt bearbeitet 09.06.2025 20:17:44

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wpsoul Greenshift – animation and page builder blocks allows Stored XSS.This issue affects Greenshift – animation and page builder blocks: fr...