Brainstormforce

Spectra

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2026-24982

  • EPSS 0.04%
  • Veröffentlicht 03.02.2026 14:08:35
  • Zuletzt bearbeitet 03.02.2026 18:16:26

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through <= 2.19.17.

5.3

CVE-2026-0950

  • EPSS 0.1%
  • Veröffentlicht 03.02.2026 06:15:53
  • Zuletzt bearbeitet 03.02.2026 16:44:03

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 2.19.17. This is due to the plugin failing to check `post_password_required()` befo...

5.4

CVE-2023-23729

  • EPSS 0.04%
  • Veröffentlicht 09.12.2025 16:40:37
  • Zuletzt bearbeitet 09.12.2025 18:36:29

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0.

6.4

CVE-2025-11162

  • EPSS 0.04%
  • Veröffentlicht 05.11.2025 04:36:58
  • Zuletzt bearbeitet 06.11.2025 19:45:30

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom CSS in all versions up to, and including, 2.19.14 due to insufficient input sanitization and output e...

6.4

CVE-2025-1784

  • EPSS 0.1%
  • Veröffentlicht 26.03.2025 05:22:53
  • Zuletzt bearbeitet 27.03.2025 16:45:46

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to insufficient input sanitization and output escaping. This makes it possi...

9.8

CVE-2023-23834

  • EPSS 0.42%
  • Veröffentlicht 09.12.2024 13:15:21
  • Zuletzt bearbeitet 01.03.2025 02:43:43

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0.

8.8

CVE-2023-23825

  • EPSS 0.36%
  • Veröffentlicht 09.12.2024 13:15:21
  • Zuletzt bearbeitet 01.03.2025 02:43:43

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0.

5.4

CVE-2024-10484

  • EPSS 0.17%
  • Veröffentlicht 03.12.2024 06:15:07
  • Zuletzt bearbeitet 07.02.2025 17:14:07

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'Team' widget in all versions up to, and including, 2.16.2 due to insufficient input sanitization and output escaping on user ...

8.8

CVE-2024-37517

  • EPSS 0.33%
  • Veröffentlicht 01.11.2024 15:15:29
  • Zuletzt bearbeitet 06.03.2025 14:25:09

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.13.7.

5.4

CVE-2024-7590

  • EPSS 0.15%
  • Veröffentlicht 12.08.2024 22:15:12
  • Zuletzt bearbeitet 01.03.2025 02:14:17

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Brainstorm Force Spectra allows Stored XSS.This issue affects Spectra: from n/a through 2.14.1.