cleantalk
Vulnerabilities and Security Researches

Product Blocks for WooCommerce, CVE-2025-22674

CVE, Research URL

CVE-2025-22674

Home page URL

Security reports for Product Blocks for WooCommerce

Application

Product Blocks for WooCommerce

Published on
Feb 04, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Get Bowtied Product Blocks for WooCommerce allows Stored XSS. This issue affects Product Blocks for WooCommerce: from n/a through 1.9.1.
Affected versions
Min -, max 2.0.
Status
vulnerable
Previous vulnerability researches
Product Blocks for WooCommerce (CVE-2025-22674) , Feb 06, 2025
New vulnerability
SB Chart block (CVE-2025-3661) , Apr 20, 2025
Themesflat Addons For Elementor (CVE-2025-3275) , Apr 20, 2025
WP Simple Booking Calendar (CVE-2025-39541) , Apr 20, 2025
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-2010) , Apr 20, 2025
WP Logger (CVE-2025-39456) , Apr 20, 2025