Wpdeveloper Essential_blocks

25 CVEs affecting Wpdeveloper Essential_blocks. Latest disclosed: 2025-03-08. Critical: 1, High: 2.

Top CVEs affecting Wpdeveloper Essential_blocks
CVESeverityScorePublishedSummary
CVE-2023-6623Critical9.82024-01-15The Essential Blocks WordPress plugin before 4.4.3 does not prevent unauthenticated attackers from overwriting local variables when rendering templates over th…
CVE-2023-4386High8.12023-10-20The Essential Blocks plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 4.2.0 via deserialization of untrusted input…
CVE-2023-4402High8.12023-10-20The Essential Blocks plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 4.2.0 via deserialization of untrusted input…
CVE-2022-47594Medium6.52024-12-13Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This…
CVE-2023-51360Medium6.52024-12-09Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg essential-blocks allows Exploiting Incorrectly Configured Access Control Secu…
CVE-2024-47385Medium6.52024-10-05Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Blocks for Gutenberg essential-bloc…
CVE-2024-30467Medium6.52024-06-09Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg.This issue affects Essential Blocks for Gutenberg: from n/a through 4.4.9.
CVE-2024-31306Medium6.52024-04-07Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Stored…
CVE-2025-1664Medium6.42025-03-08The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Parallax s…
CVE-2024-13803Medium6.42025-02-26The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-mark…
CVE-2024-4891Medium6.42024-05-18The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tagName’…
CVE-2024-2255Medium6.42024-03-20The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's w…
CVE-2024-1854Medium6.42024-03-13The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the blockId pa…
CVE-2023-7071Medium6.42024-01-11The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Table of C…
CVE-2023-51359Medium5.42024-12-09Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg essential-blocks allows Exploiting Incorrectly Configured Access Control Secu…
CVE-2024-5595Medium5.42024-08-02The Essential Blocks WordPress plugin before 4.7.0 does not validate and escape some of its block options before outputting them back in a page/post where the…
CVE-2024-3818Medium5.42024-04-19The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's "…
CVE-2024-12045Medium4.42025-01-08The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maker titl…
CVE-2025-26871Medium4.32025-02-25Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg essential-blocks allows Exploiting Incorrectly Configured Access Control Secu…
CVE-2023-47760Medium4.32024-12-09Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg essential-blocks allows Exploiting Incorrectly Configured Access Control Secu…