| CVE-2024-1999 | Gutenberg Blocks by Kadence Blocks – Page Builder Features <= 3.2.25 - Authenticated (Contributor+) Stored Cross-Site Scripting via Testimonial Widget | stellarwp | Kadence Blocks — Page Builder Toolkit for Gutenberg Editor | Medium | 6.4 | 2024-04-09 18:59:16 | Deep Dive |
| CVE-2023-6964 | Gutenberg Blocks by Kadence Blocks – Page Builder Features <= 3.1.26 - Authenticated(Contributor+) Server-Side Request Forgery (SSRF) | stellarwp | Kadence Blocks — Page Builder Toolkit for Gutenberg Editor | High | 8.5 | 2024-04-09 18:59:15 | Deep Dive |
| CVE-2024-0598 | Gutenberg Blocks by Kadence Blocks <= 3.2.17 - Authenticated(Editor+) Stored Cross-Site Scripting via Contact Form Message Settings | stellarwp | Kadence Blocks — Page Builder Toolkit for Gutenberg Editor | Medium | 4.4 | 2024-04-09 18:59:07 | Deep Dive |
| CVE-2024-2226 | Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE <= 2.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | themeisle | Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE | Medium | 6.4 | 2024-04-09 18:58:38 | Deep Dive |
| CVE-2024-3266 | Bold Page Builder <= 4.8.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Widget URL Attribute | boldthemes | Bold Page Builder | Medium | 6.4 | 2024-04-09 18:58:38 | Deep Dive |
| CVE-2024-31344 | WordPress Easy Login Styler plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability | Phpbits Creative Studio | Easy Login Styler – White Label Admin Login Page for WordPress | Medium | 5.9 | 2024-04-07 17:40:52 | Deep Dive |
| CVE-2024-2919 | Gutenberg Blocks by Kadence Blocks – Page Builder Features <= 3.2.31 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via CountUp Widget | stellarwp | Kadence Blocks — Page Builder Toolkit for Gutenberg Editor | Medium | 6.4 | 2024-04-04 02:32:40 | Deep Dive |
| CVE-2024-27951 | WordPress Multiple Page Generator Plugin <= 3.4.0 - Auth. Remote Code Execution (RCE) vulnerability | Themeisle | Multiple Page Generator Plugin – MPG | Critical | 9.1 | 2024-04-03 11:53:07 | Deep Dive |
| CVE-2024-2839 | Colibri Page Builder <= 1.0.263 - Authenticated (Contributor+) Stored Cross-Site Scripting | extendthemes | Colibri Page Builder | Medium | 6.4 | 2024-04-02 06:47:44 | Deep Dive |
| CVE-2024-2925 | Beaver Builder – WordPress Page Builder <= 2.8.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button | beaverbuilder | Beaver Builder Page Builder – Drag and Drop Website Builder | Medium | 6.4 | 2024-04-02 06:47:44 | Deep Dive |
| CVE-2024-2369 | Page Builder Gutenberg Blocks < 3.1.7 - Contributor+ Stored XSS | Unknown | Page Builder Gutenberg Blocks | - | - | 2024-04-02 05:00:01 | Deep Dive |
| CVE-2024-31087 | WordPress pageMash plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability | Joel Starnes | pageMash > Page Management | High | 7.1 | 2024-03-31 19:32:05 | Deep Dive |
| CVE-2024-30438 | WordPress Print Page block plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability | bPlugins | Print Page block | Medium | 6.5 | 2024-03-29 17:20:33 | Deep Dive |
| CVE-2024-30442 | WordPress Bold Page Builder plugin <= 4.8.0 - Cross Site Scripting (XSS) vulnerability | BoldThemes | Bold Page Builder | Medium | 6.5 | 2024-03-29 17:13:13 | Deep Dive |
| CVE-2024-30444 | WordPress WordPress Page Builder – Zion Builder plugin <= 3.6.9 - Cross Site Scripting (XSS) vulnerability | zionbuilder.io | WordPress Page Builder – Zion Builder | Medium | 5.9 | 2024-03-29 16:59:08 | Deep Dive |
| CVE-2024-30450 | WordPress OpenStreetMap for Gutenberg and WPBakery Page Builder plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability | Step-Byte-Service GmbH | OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer) | Medium | 6.5 | 2024-03-29 16:45:21 | Deep Dive |
| CVE-2024-30452 | WordPress Landing Page Builder plugin <= 1.5.1.7 - Cross Site Scripting (XSS) vulnerability | PluginOps | Landing Page Builder | Medium | 5.9 | 2024-03-29 16:40:08 | Deep Dive |
| CVE-2024-30520 | WordPress Carousel Anything For WPBakery Page Builder plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability | Labib Ahmed | Carousel Anything For WPBakery Page Builder | Medium | 6.5 | 2024-03-29 13:00:05 | Deep Dive |
| CVE-2024-2841 | Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE <= 2.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting | themeisle | Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE | Medium | 6.4 | 2024-03-29 04:31:34 | Deep Dive |
| CVE-2024-28004 | WordPress Colibri Page Builder plugin <= 1.0.248 - Broken Access Control vulnerability | ExtendThemes | Colibri Page Builder | Medium | 5.4 | 2024-03-28 05:51:25 | Deep Dive |