Qodeinteractive Qi Blocks
4 CVEs affecting Qodeinteractive Qi Blocks. Latest disclosed: 2026-07-01. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-5221 | Medium | 6.4 | 2024-06-06 | The Qi Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's file uploader in all versions up to, and including, 1.2.9 due… |
CVE-2026-10096 | Medium | 4.3 | 2026-07-01 | The Qi Blocks plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.4.9 via the 'page_id' parameter du… |
CVE-2025-12182 | Medium | 4.3 | 2025-11-15 | The Qi Blocks plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the `resize_image_callback()` function in all vers… |
CVE-2025-12180 | Medium | 4.3 | 2025-11-01 | The Qi Blocks plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.4.3. This is due to the plugin storing arbitr… |