Lucene search
Cp Blocks Security Vulnerabilities
cve
The CP Blocks WordPress plugin before 1.0.15 does not sanitise and escape its "License ID" settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed.
4.8CVSS
4.7AI Score
0.001EPSS
2022-03-07 09:15 AM
77
cve
Cross-Site Request Forgery (CSRF) vulnerability in CodePeople CP Blocks plugin <= 1.0.20 versions.
8.8CVSS
8.8AI Score
0.001EPSS
2023-10-06 03:15 PM
27