Stored XSS Vulnerability in Kenta Gutenberg Blocks Responsive Blocks and Block Templates Library
CVE-2024-35731

5.4MEDIUM

Key Information:

Vendor: WordPress
Status: Kenta Gutenberg Blocks Responsive Blocks And Block Templates Library For Gutenberg Editor
Vendor: CVE Published:; 8 June 2024

What is CVE-2024-35731?

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Moose Kenta Gutenberg Blocks Responsive Blocks and block templates library for Gutenberg Editor allows Stored XSS.This issue affects Kenta Gutenberg Blocks Responsive Blocks and block templates library for Gutenberg Editor: from n/a through 1.3.9.

Affected Version(s)

Kenta Gutenberg Blocks Responsive Blocks and block templates library for Gutenberg Editor <= 1.3.9

References

https://patchstack.com/database/vulnerability/kenta-block...

vdb-entry

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 8, 2024
Vulnerability Reserved
May 17, 2024

Credit

4rCanJ0x! (Patchstack Alliance)