Filtered by vendor Themeisle Subscriptions
Filtered by product Otter Blocks Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-11219 1 Themeisle 1 Otter Blocks 2024-11-27 5.3 Medium
The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 3.0.6 via the get_image function. This makes it possible for unauthenticated attackers to view arbitrary images on the server, which can contain sensitive information.
CVE-2024-35682 1 Themeisle 1 Otter Blocks 2024-11-21 4.3 Medium
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Themeisle Otter Blocks PRO.This issue affects Otter Blocks PRO: from n/a through 2.6.11.