cleantalk
Vulnerabilities and Security Researches

Blockspare – Expert Starter Templates Library and Gutenberg Blocks for Stunning Blogs, News, Magazines, and Agency Sites., CVE-2025-47495

CVE, Research URL

CVE-2025-47495

Home page URL

Security reports for Blockspare – Expert Starter Templates Library and Gutenberg Blocks for Stunning Blogs, News, Magazines, and Agency Sites.

Application

Blockspare – Expert Starter Templates Library and Gutenberg Blocks for Stunning Blogs, News, Magazines, and Agency Sites.

Published on
May 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Blockspare Blockspare allows Stored XSS. This issue affects Blockspare: from n/a through 3.2.9.
Affected versions
Min -, max 3.2.10.
Status
vulnerable
Previous vulnerability researches
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-24573) , Jan 26, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-1926) , Mar 10, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-2104) , Mar 14, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2024-13430) , Mar 12, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2020-36384) , Jun 07, 2024
New vulnerability
EUCookieLaw (CVE-2025-3897) , May 10, 2025
Frontend Login and Registration Blocks (CVE-2025-3605) , May 10, 2025
WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg (CVE-2025-4206) , May 10, 2025
Top 10 – WordPress Popular posts by WebberZone (CVE-2025-47509) , May 09, 2025
Easy Replace Image (CVE-2025-47483) , May 09, 2025