Filtered by vendor Wpdownloadmanager Subscriptions
Filtered by product Gutenberg Blocks For Wordpress Download Manager Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-4305 1 Wpdownloadmanager 1 Gutenberg Blocks For Wordpress Download Manager 2024-11-21 6.8 Medium
The Post Grid Gutenberg Blocks and WordPress Blog Plugin WordPress plugin before 4.1.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
CVE-2023-22713 1 Wpdownloadmanager 1 Gutenberg Blocks For Wordpress Download Manager 2024-11-21 6.5 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress Download Manager Gutenberg Blocks by WordPress Download Manager plugin <= 2.1.8 versions.