Ultimateblocks Ultimate Blocks – 25+ Gutenberg Blocks For Block Editor
7 CVEs affecting Ultimateblocks Ultimate Blocks – 25+ Gutenberg Blocks For Block Editor. Latest disclosed: 2025-06-10. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-2918 | Medium | 6.4 | 2025-06-10 | The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and… |
CVE-2025-1312 | Medium | 6.4 | 2025-03-26 | The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonTextColor’ parameter in all vers… |
CVE-2025-1703 | Medium | 6.4 | 2025-03-26 | The Ultimate Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 3.2.7 d… |
CVE-2024-4268 | Medium | 6.4 | 2024-07-02 | The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's blocks in all versions up to… |
CVE-2024-3513 | Medium | 6.4 | 2024-07-02 | The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the title tag (postTitleTag) parameter in a… |
CVE-2023-6692 | Medium | 6.4 | 2024-06-19 | The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's tab anchor metabox in all vers… |
CVE-2022-4974 | Medium | 6.3 | 2024-10-16 | The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to… |