Themeisle Otter Blocks – Gutenberg Blocks, Page Builder For Gutenberg Editor & Fse
9 CVEs affecting Themeisle Otter Blocks – Gutenberg Blocks, Page Builder For Gutenberg Editor & Fse. Latest disclosed: 2026-04-30. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-2892 | High | 7.5 | 2026-04-30 | The Otter Blocks plugin for WordPress is vulnerable to Purchase Verification Bypass in all versions up to, and including, 3.1.4. This is due to the 'get_custom… |
CVE-2024-10367 | Medium | 6.4 | 2024-11-01 | The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG… |
CVE-2024-3725 | Medium | 6.4 | 2024-05-02 | The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's… |
CVE-2024-3344 | Medium | 6.4 | 2024-04-11 | The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG file upl… |
CVE-2024-3343 | Medium | 6.4 | 2024-04-11 | The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's… |
CVE-2024-2226 | Medium | 6.4 | 2024-04-09 | The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the id param… |
CVE-2024-2841 | Medium | 6.4 | 2024-03-29 | The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's… |
CVE-2024-11219 | Medium | 5.3 | 2024-11-27 | The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Path Traversal in all versions up to, and in… |
CVE-2024-1047 | Medium | 5.3 | 2024-02-02 | Multiple plugins and/or themes for WordPress with the ThemeIsle SDK are vulnerable to unauthorized modification of data due to a missing capability check on th… |