Wordpress We Blocks Vulnerabilities

Insecure Direct Object Reference in Beautiful Timeline Builder for WordPress

CVE-2026-1228

WordPressTimeline Block – Beaut...4.3MEDIUM

Unauthorized Data Access in Greenshift Animation and Page Builder Blocks for WordPress

CVE-2026-1927

WordPressGreenshift – Animation...4.3MEDIUM

Server-Side Request Forgery Vulnerability in All In One Image Viewer Block for WordPress

CVE-2026-1294

WordPressAll In One Image Viewe...7.2HIGH

Cross-site Scripting Flaw in The Events Calendar Shortcode Plugin by Brian Hogg

CVE-2026-24988

WordPressThe Events Calendar Sh...6.5MEDIUM

Information Disclosure Vulnerability in Spectra Gutenberg Blocks for WordPress

CVE-2026-0950

WordPressSpectra Gutenberg Bloc...5.3MEDIUM

Stored Cross-Site Scripting Vulnerability in BlockArt Blocks Plugin for WordPress

CVE-2025-14283

WordPressBlockart Blocks – Gute...6.4MEDIUM

Stored Cross-Site Scripting in Interactions Plugin for WordPress

CVE-2025-12709

WordPressInteractions – Create ...6.4MEDIUM

SQL Injection Vulnerability in Recipe Card Blocks Lite Plugin for WordPress

CVE-2025-14973

WordPressRecipe Card Blocks Lite👾🟡6.8MEDIUM

Stored Cross-Site Scripting Vulnerability in Alpha Blocks Plugin for WordPress

CVE-2025-14985

WordPressAlpha Blocks6.4MEDIUM

Server-Side Request Forgery Vulnerability in Frontis Blocks Plugin for WordPress

CVE-2026-0807

WordPressFrontis Blocks — Block...7.2HIGH

Cross-Site Scripting Vulnerability in Turn Yoast SEO FAQ Block to Accordion by yasir129

CVE-2026-24591

WordPressTurn Yoast Seo Faq Blo...5.4MEDIUM

Cross-Site Scripting Flaw in Pixelgrade Nova Blocks Affects Multiple Versions

CVE-2026-24528

WordPressNova Blocks6.5MEDIUM

Sensitive Data Exposure in POSIMYTH Nexter Blocks by The Plus Addons for Block Editor

CVE-2026-24377

WordPressNexter Blocks7.5HIGH

Server-Side Request Forgery in WP Messiah Frontis Blocks Plugin by WordPress

CVE-2025-68030

WordPressFrontis Blocks7.2HIGH

Stored Cross-Site Scripting Vulnerability in Team Section Block Plugin for WordPress

CVE-2026-0833

WordPressTeam Section Block – S...6.4MEDIUM

Arbitrary File Read Vulnerability in Thim Blocks Page Builder for WordPress

CVE-2025-13725

WordPressThim Blocks6.5MEDIUM

Insecure Direct Object Reference in The Shield Plugin for WordPress

CVE-2025-15370

WordPressShield: Blocks Bots, P...4.3MEDIUM

Stored Cross-Site Scripting Vulnerability in Gotham Block Extra Light Plugin for WordPress

CVE-2025-15021

WordPressGotham Block Extra Light4.4MEDIUM

Arbitrary File Read Vulnerability in Gotham Block Extra Light Plugin for WordPress

CVE-2025-15020

WordPressGotham Block Extra Light6.5MEDIUM

Sensitive Information Exposure in LottieFiles for WordPress Plugin

CVE-2026-0717

WordPressLottiefiles – Lottie B...5.3MEDIUM

Sensitive Information Exposure in BetterDocs Plugin for WordPress

CVE-2025-14980

WordPressBetterdocs – Knowledg...6.5MEDIUM

Missing Authorization Flaw in Block Slider by Munir Kamal

CVE-2026-22522

WordPressBlock Slider6.5MEDIUM

Stored Cross-Site Scripting Vulnerability in Gutenverse Form Plugin for WordPress

CVE-2025-14984

WordPressGutenverse Form – Cont...6.4MEDIUM

Stored Cross-Site Scripting in Niche Hero Plugin for WordPress

CVE-2025-14145

WordPressNiche Hero | Beautiful...6.4MEDIUM

IP Address Spoofing in AA Block Country Plugin for WordPress

CVE-2025-13694

WordPressAa Block Country5.3MEDIUM

Vulnerability Published:

Sort By:

6 February 2026

Insecure Direct Object Reference in Beautiful Timeline Builder for WordPress

5 February 2026

Unauthorized Data Access in Greenshift Animation and Page Builder Blocks for WordPress

Server-Side Request Forgery Vulnerability in All In One Image Viewer Block for WordPress

3 February 2026

Cross-site Scripting Flaw in The Events Calendar Shortcode Plugin by Brian Hogg

Information Disclosure Vulnerability in Spectra Gutenberg Blocks for WordPress

28 January 2026

Stored Cross-Site Scripting Vulnerability in BlockArt Blocks Plugin for WordPress

Stored Cross-Site Scripting in Interactions Plugin for WordPress

26 January 2026

SQL Injection Vulnerability in Recipe Card Blocks Lite Plugin for WordPress

24 January 2026

Stored Cross-Site Scripting Vulnerability in Alpha Blocks Plugin for WordPress

Server-Side Request Forgery Vulnerability in Frontis Blocks Plugin for WordPress

23 January 2026

Cross-Site Scripting Vulnerability in Turn Yoast SEO FAQ Block to Accordion by yasir129

Cross-Site Scripting Flaw in Pixelgrade Nova Blocks Affects Multiple Versions

22 January 2026

Sensitive Data Exposure in POSIMYTH Nexter Blocks by The Plus Addons for Block Editor

Server-Side Request Forgery in WP Messiah Frontis Blocks Plugin by WordPress

17 January 2026

Stored Cross-Site Scripting Vulnerability in Team Section Block Plugin for WordPress

Arbitrary File Read Vulnerability in Thim Blocks Page Builder for WordPress

16 January 2026

Insecure Direct Object Reference in The Shield Plugin for WordPress

14 January 2026

Stored Cross-Site Scripting Vulnerability in Gotham Block Extra Light Plugin for WordPress

Arbitrary File Read Vulnerability in Gotham Block Extra Light Plugin for WordPress

Sensitive Information Exposure in LottieFiles for WordPress Plugin

9 January 2026

Sensitive Information Exposure in BetterDocs Plugin for WordPress

8 January 2026

Missing Authorization Flaw in Block Slider by Munir Kamal

Stored Cross-Site Scripting Vulnerability in Gutenverse Form Plugin for WordPress

7 January 2026

Stored Cross-Site Scripting in Niche Hero Plugin for WordPress

IP Address Spoofing in AA Block Country Plugin for WordPress