Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

WPBlockart — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting WPBlockart. AI-powered Chinese analysis, POCs, and references for each vulnerability.

WPBlockart is a WordPress plugin providing block-based design elements for websites. Historically, it has been susceptible to multiple security vulnerabilities including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. The plugin has accumulated six CVEs, reflecting recurring issues in input validation and access control. Security researchers have identified patterns of insufficient sanitization in user-supplied data, leading to potential compromises. While no major public incidents have been widely documented, the consistent vulnerability pattern suggests ongoing security challenges for administrators using this plugin. Regular updates and careful configuration remain critical for mitigating risks associated with these design components.

Top products by WPBlockart: BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library Magazine Blocks BlockArt Blocks Magazine Blocks – Blog Designer, Magazine & Newspaper Website Builder, Page Builder with Posts Blocks, Post Grid
CVE IDTitleCVSSSeverityPublished
CVE-2026-3498 BlockArt Blocks <= 2.2.15 - Authenticated (Author+) Stored Cross-Site Scripting via 'clientId' Block Attribute — BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template LibraryCWE-79 6.4 Medium2026-04-11
CVE-2025-14283 BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library <= 2.2.14 - Authenticated (Contributor+) Stored Cross-Site Scripting — BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template LibraryCWE-79 6.4 Medium2026-01-28
CVE-2025-13697 BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library <= 2.2.13 - Authenticated (Contributor+) Stored Cross-Site Scripting via `timestamp` Attribute — BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template LibraryCWE-79 6.4 Medium2025-12-02
CVE-2024-9218 Magazine Blocks – Blog Designer, Magazine & Newspaper Website Builder, Page Builder with Posts Blocks, Post Grid <= 1.3.14 - Reflected Cross-Site Scripting — Magazine Blocks – Blog Designer, Magazine & Newspaper Website Builder, Page Builder with Posts Blocks, Post GridCWE-79 6.1 Medium2024-10-02
CVE-2024-35704 WordPress BlockArt Blocks plugin <= 2.1.5 - Cross Site Scripting (XSS) vulnerability — BlockArt BlocksCWE-79 6.5 Medium2024-06-08
CVE-2024-34760 WordPress Magazine Blocks plugin <= 1.3.6 - Cross Site Scripting (XSS) vulnerability — Magazine BlocksCWE-79 5.9 Medium2024-05-16

This page lists every published CVE security advisory associated with WPBlockart. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.