Brainstormforce

Spectra

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2026-24982

  • EPSS 0.04%
  • Veröffentlicht 03.02.2026 14:08:35
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through <= 2.19.17.

5.3

CVE-2026-0950

  • EPSS 0.11%
  • Veröffentlicht 03.02.2026 06:15:53
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 2.19.17. This is due to the plugin failing to check `post_password_required()` befo...

5.4

CVE-2023-23729

  • EPSS 0.06%
  • Veröffentlicht 09.12.2025 16:40:37
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0.

6.4

CVE-2025-11162

  • EPSS 0.03%
  • Veröffentlicht 05.11.2025 04:36:58
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom CSS in all versions up to, and including, 2.19.14 due to insufficient input sanitization and output e...

6.4

CVE-2025-1784

  • EPSS 0.1%
  • Veröffentlicht 26.03.2025 05:22:53
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to insufficient input sanitization and output escaping. This makes it possi...

9.8

CVE-2023-23834

  • EPSS 0.42%
  • Veröffentlicht 09.12.2024 13:15:21
  • Zuletzt bearbeitet 01.03.2025 02:43:43

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0.

8.8

CVE-2023-23825

  • EPSS 0.36%
  • Veröffentlicht 09.12.2024 13:15:21
  • Zuletzt bearbeitet 01.03.2025 02:43:43

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0.

5.4

CVE-2024-10484

  • EPSS 0.17%
  • Veröffentlicht 03.12.2024 06:15:07
  • Zuletzt bearbeitet 07.02.2025 17:14:07

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'Team' widget in all versions up to, and including, 2.16.2 due to insufficient input sanitization and output escaping on user ...

8.8

CVE-2024-37517

  • EPSS 0.33%
  • Veröffentlicht 01.11.2024 15:15:29
  • Zuletzt bearbeitet 06.03.2025 14:25:09

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.13.7.

5.4

CVE-2024-7590

  • EPSS 0.28%
  • Veröffentlicht 12.08.2024 22:15:12
  • Zuletzt bearbeitet 01.04.2026 16:21:55

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows DOM-Based XSS.This issue affects Spectra: from n/a through <= 2.14.1.