Content Blocks (Custom Post Widget), CVE-2024-44051

CVE, Research URL: CVE-2024-44051
Home page URL: Security reports for Content Blocks (Custom Post Widget)
Application: Content Blocks (Custom Post Widget)
Published on: Sep 18, 2024
Research Description: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Johan van der Wijk Content Blocks (Custom Post Widget) allows Stored XSS.This issue affects Content Blocks (Custom Post Widget): from n/a through 3.3.5.
Affected versions: max 3.3.6.
Status: vulnerable