Cross-site Scripting Vulnerability in Ultimate Blocks by Ultimate Blocks
CVE-2025-47493
6.5MEDIUM
What is CVE-2025-47493?
A vulnerability in Ultimate Blocks allows for improper neutralization of input during web page generation, leading to a DOM-based Cross-site Scripting (XSS) issue. This could enable attackers to inject malicious scripts into web pages viewed by users, potentially compromising user data and site integrity. The issue affects versions up to 3.2.9 and emphasizes the necessity for prompt updates and security measures.
Affected Version(s)
Ultimate Blocks <= 3.2.9