cleantalk
Vulnerabilities and Security Researches

Page Builder Gutenberg Blocks – CoBlocks, CVE-2026-27094

CVE, Research URL

CVE-2026-27094

Home page URL

Security reports for Page Builder Gutenberg Blocks – CoBlocks

Application

Page Builder Gutenberg Blocks – CoBlocks

Published on
Feb 19, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GoDaddy CoBlocks coblocks allows Stored XSS.This issue affects CoBlocks: from n/a through <= 3.1.16.
Affected versions
max 3.1.16.
Status
vulnerable
Previous vulnerability researches
SEO Flow by LupsOnline (CVE-2025-48146) , May 18, 2025
SEO Flow by LupsOnline (CVE-2025-15285) , Feb 27, 2026
New vulnerability
SlimStat Analytics (CVE-2025-13431) , Feb 27, 2026
SlimStat Analytics (CVE-2025-69323) , Feb 27, 2026
Video Share VOD &#8211; Turnkey Video Site Builder Script (CVE-2025-13727) , Feb 27, 2026
Nelio Popups (CVE-2026-25016) , Feb 27, 2026
WP Job Manager (CVE-2026-25404) , Feb 27, 2026