Pubudu-malalasekara Post Blocks & Tools
2 CVEs affecting Pubudu-malalasekara Post Blocks & Tools. Latest disclosed: 2026-04-08. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-5711 | Medium | 6.4 | 2026-04-08 | The Post Blocks & Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sliderStyle' block attribute in the Posts Slider block in al… |
CVE-2025-11828 | Medium | 6.4 | 2025-11-11 | The Magazine Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'headerHtmlTag' attribute in the bnm-blocks/featured-posts-1 b… |