cleantalk
Vulnerabilities and Security Researches

Advanced Accordion Gutenberg Block, 619349ba47bf00135c6393c9e4674307f8d3ef30

CVE, Research URL

619349ba47bf00135c6393c9e4674307f8d3ef30

Home page URL

Security reports for Advanced Accordion Gutenberg Block

Application

Advanced Accordion Gutenberg Block

Published on
Jul 18, 2023
Research Description
Advanced Accordion Gutenberg Block [advanced-accordion-block] < 4.6.1 WordPress Advanced Accordion Gutenberg Block Plugin <= 4.6.0 is vulnerable to Cross Site Scripting (XSS) No patched version available. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Advanced Accordion Gutenberg Block Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has not been known to be fixed yet.
Affected versions
Min -, max 4.6.1.
Status
vulnerable
Previous vulnerability researches
Advanced Accordion Gutenberg Block (619349ba47bf00135c6393c9e4674307f8d3ef30) , Jun 07, 2024
Advanced Accordion Gutenberg Block (CVE-2025-2543) , Apr 25, 2025
New vulnerability
Material Dashboard (CVE-2025-32486) , Apr 29, 2025
Greenshift &#8211; animation and page builder blocks (CVE-2025-3616) , Apr 29, 2025
Flynax Bridge (CVE-2025-3603) , Apr 29, 2025
WS Form LITE &#8211; Drag &amp; Drop Contact Form Builder for WordPress (CVE-2025-3912) , Apr 28, 2025
Upsell Order Bump Offer for WooCommerce – Increase Sales and AOV, Upsell &amp; Cross-sell Offers on Checkout Page (CVE-2025-3743) , Apr 28, 2025