Gothamdev Gotham Block Extra Light
2 CVEs affecting Gothamdev Gotham Block Extra Light. Latest disclosed: 2026-01-14. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-15020 | Medium | 6.5 | 2026-01-14 | The Gotham Block Extra Light plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.5.0 via the 'ghostban' shortcod… |
CVE-2025-15021 | Medium | 4.4 | 2026-01-14 | The Gotham Block Extra Light plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.5.0 d… |