cleantalk
Vulnerabilities and Security Researches

Qi Blocks, CVE-2024-49690

CVE, Research URL

CVE-2024-49690

Home page URL

Security reports for Qi Blocks

Application

Qi Blocks

Published on
Oct 23, 2024
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Qode Interactive Qi Blocks.This issue affects Qi Blocks: from n/a through 1.3.2.
Affected versions
Min -, max 1.3.3.
Status
vulnerable
Previous vulnerability researches
Qi Blocks (CVE-2025-1627) , May 21, 2025
Qi Blocks (CVE-2025-1625) , May 21, 2025
Qi Blocks (CVE-2025-1626) , May 21, 2025
Qi Blocks (CVE-2024-38712) , Jul 15, 2024
Qi Blocks (CVE-2024-49690) , Oct 25, 2024
New vulnerability
Back Button Widget (CVE-2025-48252) , May 21, 2025
Cloudflare Turnstile or reCAPTCHA For All Pages, to Block Spam and Hackers Attack, Block Visitors from China (CVE-2025-48243) , May 21, 2025
Free Shipping Amount Label & Progress Bar for WooCommerce (CVE-2025-48253) , May 21, 2025
WordPress Gallery Plugin – NextGEN Gallery (CVE-2024-5878) , May 21, 2025
Pretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin (CVE-2025-48247) , May 21, 2025