CVE-2023-2087
- EPSS 0.08%
- Published 09.06.2023 06:16:03
- Last modified 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.0.6. This is due to missing or incorrect nonce validation on the save function. This makes it possible for unauthenticated attac...
CVE-2023-2086
- EPSS 0.12%
- Published 09.06.2023 06:16:03
- Last modified 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the template_count function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attacke...
CVE-2023-2085
- EPSS 0.12%
- Published 09.06.2023 06:16:03
- Last modified 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the templates function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attackers to...
CVE-2023-2083
- EPSS 0.08%
- Published 09.06.2023 06:16:02
- Last modified 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the save function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attackers to save...
CVE-2023-2084
- EPSS 0.11%
- Published 09.06.2023 06:16:02
- Last modified 21.11.2024 07:57:54
The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the get function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attackers to obtai...