Vulnerabilities and security researches for the-plus-addons-for-block-editor

Jun 07, 2024

CVE, Research URL: CVE-2024-30435
Application: The Plus Blocks for Block Editor | Gutenberg
Date: Mar 29, 2024
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH The Plus Blocks for Block Editor | Gutenberg allows Reflected XSS.This issue affects The Plus Blocks for Block Editor | Gutenberg: from n/a through 3.2.5.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2024-33572
Application: The Plus Blocks for Block Editor | Gutenberg
Date: Jun 09, 2024
Research Description: Missing Authorization vulnerability in POSIMYTH The Plus Blocks for Block Editor | Gutenberg.This issue affects The Plus Blocks for Block Editor | Gutenberg: from n/a through 3.2.5.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2024-50452
Application: The Plus Blocks for Block Editor | Gutenberg
Date: -
Research Description: Nexter Blocks – WordPress Gutenberg Blocks & 1000+ Starter Templates [the-plus-addons-for-block-editor] < 4.0.0 CVE-2024-50452
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2024-56246
Application: The Plus Blocks for Block Editor | Gutenberg
Date: Jan 02, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH Nexter Blocks allows DOM-Based XSS.This issue affects Nexter Blocks: from n/a through 4.0.4.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2024-56294
Application: The Plus Blocks for Block Editor | Gutenberg
Date: Jan 07, 2025
Research Description: Missing Authorization vulnerability in POSIMYTH Nexter Blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Nexter Blocks: from n/a through 4.0.7.
Affected versions: Min -, max -.
Status: vulnerable