Vulnerabilidades em bplugins
79 resultadosCVE-2023-5860HIGHIcons Font Loader <= 1.1.2 - Authenticated (Administrator+) Arbitrary File UploadEPSS 1.0%CVE-2025-8418HIGHB Slider- Gutenberg Slider Block for WP <= 1.1.30 - Authenticated (Subscriber+) Missing Authorization to Arbitrary Plugin InstallationEPSS 0.5%CVE-2024-0908MEDIUMAdvanced Post Block – Display Posts, Pages, or Custom Posts on Your Page <= 1.13.4 - Missing Authorization to Information DisclosureEPSS 0.5%CVE-2024-10671MEDIUMButton Block – Get fully customizable & multi-functional buttons <= 1.1.4 - Authenticated (Contributor+) Post DisclosureEPSS 0.5%CVE-2024-4398MEDIUMHTML5 Audio Player- Best WordPress Audio Player Plugin <= 2.2.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple WidgetsEPSS 0.5%CVE-2025-8059CRITICALB Blocks <= 2.0.6 - Missing Authorization to Unauthenticated Privilege Escalation via rgfr_registration FunctionEPSS 0.4%CVE-2024-10666MEDIUMEasy Twitter Feed – Twitter feeds plugin for WP <= 1.2.6 - Authenticated (Contributor+) Post ExposureEPSS 0.4%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2024-7727MEDIUMHTML5 Video Player – mp4 Video Player Plugin and Block <= 2.5.32 - Missing Authorization in multiple functions via h5vp_ajax_handlerEPSS 0.4%CVE-2025-26883MEDIUMWordPress Animated Text Block plugin <= 1.0.7 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-12560MEDIUMButton Block – Get fully customizable & multi-functional buttons <= 1.1.5 - Authenticated (Contributor+) Post Disclosure via Post DuplicationEPSS 0.4%CVE-2025-24595MEDIUMWordPress All Embed – Elementor Addons plugin <= 1.1.3 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-30438MEDIUMWordPress Print Page block plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2025-62007HIGHWordPress Voice Feedback plugin <= 1.0.3 - Privilege Escalation vulnerabilityEPSS 0.3%CVE-2024-13156MEDIUMHTML5 Video Player – mp4 Video Player Plugin and Block <= 2.5.35 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via heading ParameterEPSS 0.3%CVE-2024-30432MEDIUMWordPress B Slider plugin <= 1.1.12 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-23508HIGHWordPress PDF Poster - PDF Embedder Plugin for WordPress Plugin <= 2.1.17 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2025-8680MEDIUMB Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Server-Side Request ForgeryEPSS 0.3%CVE-2025-8676MEDIUMB Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Sensitive Information ExposureEPSS 0.3%CVE-2024-13514MEDIUMB Slider- Gutenberg Slider Block for WP <= 1.1.23 - Authenticated (Contributor+) Private Post Disclosure via bsb-slider ShortcodeEPSS 0.3%