Qodeinteractive Qi_blocks
6 CVEs affecting Qodeinteractive Qi_blocks. Latest disclosed: 2025-05-19. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-49690 | High | 7.5 | 2024-10-23 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Qode Qi Blocks qi-blocks.This issue af… |
CVE-2024-38712 | Medium | 6.5 | 2024-07-20 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Qode Qi Blocks qi-blocks.This issue affects Qi Blocks: fr… |
CVE-2024-5221 | Medium | 6.4 | 2024-06-06 | The Qi Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's file uploader in all versions up to, and including, 1.2.9 due… |
CVE-2025-1627 | Medium | 5.4 | 2025-05-19 | The Qi Blocks WordPress plugin before 1.4 does not validate and escape some of its block options before outputting them back in a page/post where the block is… |
CVE-2025-1626 | Medium | 5.4 | 2025-05-19 | The Qi Blocks WordPress plugin before 1.4 does not validate and escape some of its Countdown block options before outputting them back in a page/post where the… |
CVE-2025-1625 | Medium | 5.4 | 2025-05-19 | The Qi Blocks WordPress plugin before 1.4 does not validate and escape some of its Counter block options before outputting them back in a page/post where the b… |