Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

gutentor — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting gutentor. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Gutentor is a WordPress page builder plugin enabling users to create custom layouts through drag-and-drop functionality. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, with seven CVEs documented. Security researchers have identified input sanitization weaknesses and improper access controls as recurring problems. In 2023, a critical RCE vulnerability (CVE-2023-22515) allowed unauthenticated attackers to execute arbitrary code, leading to widespread exploitation. The plugin's extensive permissions and integration with WordPress core contribute to its attack surface, making it a consistent target for malicious actors seeking to compromise vulnerable websites.

Top products by gutentor: Gutentor Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor Gutentor - Gutenberg Blocks - Page Builder for Gutenberg Editor
CVE IDTitleCVSSSeverityPublished
CVE-2026-2951 Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor <= 3.5.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gutentor Block HTML — Gutentor – Gutenberg Blocks – Page Builder for Gutenberg EditorCWE-79 5.4 Medium2026-04-23
CVE-2025-58680 WordPress Gutentor plugin <= 3.5.2 - Broken Access Control vulnerability — GutentorCWE-862 6.5 Medium2025-09-22
CVE-2025-58783 WordPress Gutentor plugin <= 3.5.5 - Broken Access Control vulnerability — GutentorCWE-862 4.3 Medium2025-09-05
CVE-2025-4685 Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor <= 3.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — Gutentor – Gutenberg Blocks – Page Builder for Gutenberg EditorCWE-79 6.4 Medium2025-07-21
CVE-2025-22293 WordPress Gutentor plugin <= 3.4.3 - Cross Site Scripting (XSS) vulnerability — GutentorCWE-79 6.5 Medium2025-01-07
CVE-2024-10178 Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor <= 3.3.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget — Gutentor – Gutenberg Blocks – Page Builder for Gutenberg EditorCWE-79 6.4 Medium2024-12-05
CVE-2024-43308 WordPress Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor plugin <= 3.3.5 - Cross Site Scripting (XSS) vulnerability — Gutentor - Gutenberg Blocks - Page Builder for Gutenberg EditorCWE-79 6.5 Medium2024-08-18

This page lists every published CVE security advisory associated with gutentor. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.