Vanderwijk Content Blocks (Custom Post Widget)
4 CVEs affecting Vanderwijk Content Blocks (Custom Post Widget). Latest disclosed: 2026-04-18. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-3564 | High | 8.8 | 2024-06-01 | The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3.0 via the plugin's… |
CVE-2026-0894 | Medium | 6.4 | 2026-04-18 | The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's content_block shortcode in all versi… |
CVE-2024-6432 | Medium | 6.4 | 2025-02-20 | The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter within the plugin's short… |
CVE-2024-3565 | Medium | 6.4 | 2024-06-01 | The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'content_block' shortcode in all ver… |