Wpdeveloper

Essential Blocks

25 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-1664

  • EPSS 0.03%
  • Published 08.03.2025 12:15:36
  • Last modified 11.03.2025 21:25:56

The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Parallax slider in all versions up to, and including, 5.3.1 due to insufficient input sanitization an...

5.4

CVE-2024-13803

  • EPSS 0.05%
  • Published 26.02.2025 13:15:38
  • Last modified 10.04.2025 17:46:21

The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-marker’ parameter in all versions up to, and including, 5.2.3 due to insufficient input sanitiz...

8.8

CVE-2025-26871

  • EPSS 0.07%
  • Published 25.02.2025 15:15:24
  • Last modified 10.04.2025 17:53:34

Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Essential Blocks for Gutenberg: from n/a through 4.8.3.

4.8

CVE-2024-12045

  • EPSS 0.08%
  • Published 08.01.2025 08:15:24
  • Last modified 17.04.2025 02:39:56

The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maker title value of the Google Maps block in all versions up to, and including, 5.0.9 due to insuff...

6.5

CVE-2022-47594

  • EPSS 0.08%
  • Published 13.12.2024 15:15:10
  • Last modified 11.04.2025 14:57:56

Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Blocks for Gutenberg: from n/a through 3.8.5.

8.8

CVE-2023-51360

  • EPSS 0.16%
  • Published 09.12.2024 13:15:40
  • Last modified 22.01.2025 17:35:03

Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Blocks for Gutenberg: from n/a through 4.2.0.

8.8

CVE-2023-51359

  • EPSS 0.28%
  • Published 09.12.2024 13:15:39
  • Last modified 22.01.2025 18:22:07

Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Blocks for Gutenberg: from n/a through 4.2.0.

8.8

CVE-2023-47760

  • EPSS 0.25%
  • Published 09.12.2024 13:15:29
  • Last modified 22.01.2025 18:13:16

Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Blocks for Gutenberg: from n/a through 4.2.0.

5.4

CVE-2024-47385

  • EPSS 0.06%
  • Published 05.10.2024 15:15:15
  • Last modified 11.04.2025 15:11:07

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Stored XSS.This issue affects Essential Blocks for Gutenberg: from n/a through 4.8.4.

5.4

CVE-2024-5595

Exploit
  • EPSS 0.21%
  • Published 02.08.2024 06:15:54
  • Last modified 11.04.2025 15:14:03

The Essential Blocks WordPress plugin before 4.7.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Sto...