Gothamdev Gotham Block Extra Light

2 CVEs affecting Gothamdev Gotham Block Extra Light. Latest disclosed: 2026-01-14. Critical: 0, High: 0.

Top CVEs affecting Gothamdev Gotham Block Extra Light
CVESeverityScorePublishedSummary
CVE-2025-15020Medium6.52026-01-14The Gotham Block Extra Light plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.5.0 via the 'ghostban' shortcod…
CVE-2025-15021Medium4.42026-01-14The Gotham Block Extra Light plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.5.0 d…