Wpsoul Greenshift – Animation And Page Builder Blocks
13 CVEs affecting Wpsoul Greenshift – Animation And Page Builder Blocks. Latest disclosed: 2026-04-11. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-3616 | High | 8.8 | 2025-04-22 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the gspb… |
CVE-2023-6636 | High | 7.2 | 2024-01-11 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation on the 'gsp… |
CVE-2024-35765 | Medium | 6.5 | 2024-06-19 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wpsoul Greenshift – animation and page builder blo… |
CVE-2026-4895 | Medium | 6.4 | 2026-04-11 | The GreenShift - Animation and Page Builder Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 12.8.9 T… |
CVE-2026-2593 | Medium | 6.4 | 2026-03-05 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `_gspb_post_css` post meta value a… |
CVE-2025-11841 | Medium | 6.4 | 2025-11-04 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Chart Data attributes in all versi… |
CVE-2024-6155 | Medium | 6.4 | 2025-01-09 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Authenticated (Subscriber+) Server-Side Request Forgery and Stored Cro… |
CVE-2022-4974 | Medium | 6.3 | 2024-10-16 | The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to… |
CVE-2023-22707 | Medium | 5.9 | 2023-03-27 | Auth. (author+) Cross-Site Scripting (XSS) vulnerability in Wpsoul Greenshift – animation and page builder blocks plugin <= 4.9.9 versions. |
CVE-2026-1927 | Medium | 5.4 | 2026-02-05 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the g… |
CVE-2026-2371 | Medium | 5.3 | 2026-03-06 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including… |
CVE-2026-2589 | Medium | 5.3 | 2026-03-05 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1… |
CVE-2024-11181 | Medium | 4.3 | 2024-12-12 | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 9.9.9.3 via… |