Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 430 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-5595 Essential Blocks < 4.7.0 - Contributor+ Stored XSS UnknownEssential Blocks--2024-08-02 06:00:07 Deep Dive
CVE-2024-6346 Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel – Combo Blocks <= 2.2.85 - Authenticated (Contributor+) Stored Cross-Site Scripting via redirectURL Parameter of Date Countdown Widget pickpluginsPost Grid Medium 6.4 2024-08-01 09:29:48 Deep Dive
CVE-2024-6362 Ultimate Blocks < 3.2.0 - Contributor+ Stored XSS UnknownUltimate Blocks--2024-07-29 06:00:08 Deep Dive
CVE-2024-4260 CoBlocks < 3.1.12 - Contributor+ SSRF UnknownPage Builder Gutenberg Blocks --2024-07-23 06:00:02 Deep Dive
CVE-2024-33933 WordPress Elementor Header & Footer Builder plugin <= 1.6.35 - Contributor+ DOM-Based Cross Site Scripting (XSS) vulnerability Brainstorm Force, Nikhil ChavanElementor – Header, Footer & Blocks Template Medium 6.5 2024-07-22 10:04:08 Deep Dive
CVE-2024-37457 WordPress Ultimate Blocks – WordPress Blocks Plugin plugin <= 3.1.9 - Cross Site Scripting (XSS) vulnerability Ultimate BlocksUltimate Blocks – Gutenberg Blocks Plugin Medium 6.5 2024-07-21 22:11:50 Deep Dive
CVE-2024-37519 WordPress Premium Blocks – Gutenberg Blocks for WordPress plugin <= 2.1.27 - Cross Site Scripting (XSS) vulnerability Leap13Premium Blocks – Gutenberg Blocks for WordPress Medium 6.5 2024-07-21 07:12:58 Deep Dive
CVE-2024-37951 WordPress Magical Posts Display plugin <= 1.2.38 - Cross Site Scripting (XSS) vulnerability Noor alamMagical Posts Display – Elementor & Gutenberg Posts Blocks Medium 6.5 2024-07-20 08:23:32 Deep Dive
CVE-2024-38675 WordPress Arkhe Blocks plugin 2.22.1 - Cross Site Scripting (XSS) vulnerability LOOS,Inc.Arkhe Blocks Medium 6.5 2024-07-20 07:53:00 Deep Dive
CVE-2024-38684 WordPress SlingBlocks plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability FunnelKitSlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) Medium 6.5 2024-07-20 07:42:30 Deep Dive
CVE-2024-38712 WordPress Qi Blocks plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability QodeQi Blocks Medium 6.5 2024-07-20 07:26:38 Deep Dive
CVE-2024-6489 Getwid – Gutenberg Blocks <= 2.0.10 - Missing Authorization to Google API key update jetmonstersGetwid – Gutenberg Blocks Medium 5.3 2024-07-20 06:43:48 Deep Dive
CVE-2024-6491 Getwid – Gutenberg Blocks <= 2.0.10 - Missing Authentication to MailChimp API key update jetmonstersGetwid – Gutenberg Blocks Medium 4.3 2024-07-20 06:43:46 Deep Dive
CVE-2024-4655 Ultimate Blocks < 3.1.9 - Contributor+ Stored XSS UnknownUltimate Blocks --2024-07-11 06:00:03 Deep Dive
CVE-2024-37115 WordPress Newspack Blocks plugin <= 3.0.8 - Sensitive Data Exposure vulnerability AutomatticNewspack Blocks High 7.5 2024-07-10 17:55:13 Deep Dive
CVE-2024-37424 WordPress Newspack Blocks plugin <= 3.0.8 - Arbitrary File Upload vulnerability AutomatticNewspack Blocks Critical 9.9 2024-07-09 10:21:08 Deep Dive
CVE-2024-3563 Genesis Blocks <= 3.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Sharing Block Attributes studiopressGenesis Blocks Medium 6.4 2024-07-09 08:33:13 Deep Dive
CVE-2024-4268 Ultimate Blocks – WordPress Blocks Plugin <= 3.1.9 - Authenticated(Contributor+) Stored Cross-Site Scripting via Multiple Blocks ultimateblocksUltimate Blocks – 25+ Gutenberg Blocks for Block Editor Medium 6.4 2024-07-02 11:01:35 Deep Dive
CVE-2024-3513 Ultimate Blocks – WordPress Blocks Plugin <= 3.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via title tag attribute ultimateblocksUltimate Blocks – 25+ Gutenberg Blocks for Block Editor Medium 6.4 2024-07-02 07:37:04 Deep Dive
CVE-2024-1427 The Post Grid <= 7.7.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via section title tag techlabpro1The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid Medium 6.4 2024-07-02 05:32:56 Deep Dive