Automattic Newspack Blocks

4 CVEs affecting Automattic Newspack Blocks. Latest disclosed: 2024-11-01. Critical: 1, High: 2.

Top CVEs affecting Automattic Newspack Blocks
CVESeverityScorePublishedSummary
CVE-2024-37424Critical9.92024-07-09Unrestricted Upload of File with Dangerous Type vulnerability in Automattic Newspack Blocks allows Upload a Web Shell to a Web Server.This issue affects Newspa…
CVE-2024-37423High8.52024-11-01Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Automattic Newspack Blocks allows Path Traversal.This issue aff…
CVE-2024-37115High7.52024-07-10Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Automattic Newspack Blocks.This issue affects Newspack Blocks: from n/a through 3.0…
CVE-2024-37425Medium5.42024-11-01Missing Authorization vulnerability in Automattic Newspack Blocks newspack-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This…