Qodeinteractive Qi Blocks

4 CVEs affecting Qodeinteractive Qi Blocks. Latest disclosed: 2026-07-01. Critical: 0, High: 0.

Top CVEs affecting Qodeinteractive Qi Blocks
CVESeverityScorePublishedSummary
CVE-2024-5221Medium6.42024-06-06The Qi Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's file uploader in all versions up to, and including, 1.2.9 due…
CVE-2026-10096Medium4.32026-07-01The Qi Blocks plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.4.9 via the 'page_id' parameter du…
CVE-2025-12182Medium4.32025-11-15The Qi Blocks plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the `resize_image_callback()` function in all vers…
CVE-2025-12180Medium4.32025-11-01The Qi Blocks plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.4.3. This is due to the plugin storing arbitr…