Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Greenshift – animation and page builder blocks — Vulnerabilities & Security Advisories 12

All 12 CVE vulnerabilities found in Greenshift – animation and page builder blocks, with AI-generated Chinese analysis, references, and POCs.

Vendor: Wpsoul

CVE IDTitleCVSSSeverityPublished
CVE-2026-4895 Greenshift <= 12.8.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via disablelazy Attribute CWE-79 6.4 Medium2026-04-11
CVE-2026-2371 Greenshift <= 12.8.3 - Missing Authorization to Unauthenticated Private Reusable Block Disclosure via 'gspb_el_reusable_load' CWE-862 5.3 Medium2026-03-06
CVE-2026-2589 Greenshift – animation and page builder blocks <= 12.8.3 - Unauthenticated Sensitive Information Exposure via Settings Backup CWE-200 5.3 Medium2026-03-05
CVE-2026-2593 Greenshift – animation and page builder blocks <= 12.8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 6.4 Medium2026-03-05
CVE-2026-1927 GreenShift - Animation and Page Builder Blocks <= 12.6 - Missing Authorization to Authenticated (Subscriber+) Information Disclosure of AI API Keys and Stored Cross-Site Scripting via custom_css CWE-862 5.4 Medium2026-02-05
CVE-2025-11841 Greenshift – animation and page builder blocks <= 12.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Chart Data Attributes CWE-79 6.4 Medium2025-11-04
CVE-2025-3616 Greenshift 11.4 - 11.4.5 - Authenticated (Subscriber+) Arbitrary File Upload CWE-434 8.8 High2025-04-22
CVE-2024-6155 Greenshift – animation and page builder blocks <= 9.0.0 - Missing Authorization to Authenticated (Subscriber+) Server-Side Request Forgery and Stored Cross-Site Scripting CWE-862 6.4 Medium2025-01-09
CVE-2024-11181 Greenshift – animation and page builder blocks <= 9.9.9.3 - Authenticated (Contributor+) Post Disclosure CWE-639 4.3 Medium2024-12-12
CVE-2024-35765 WordPress Greenshift – animation and page builder blocks plugin <= 8.8.9.1 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2024-06-19
CVE-2023-6636 Greenshift – animation and page builder blocks <= 7.6.2 - Authenticated (Administrator+) Arbitrary File Upload CWE-434 7.2 High2024-01-11
CVE-2023-22707 WordPress Greenshift – animation and page builder blocks Plugin <= 4.9.9 is vulnerable to Cross Site Scripting (XSS) CWE-79 5.9 Medium2023-03-27

All 12 known CVE vulnerabilities affecting Greenshift – animation and page builder blocks with full Chinese analysis, references, and POCs where available.