Vulnerabilities > Greenshiftwp > Greenshift Animation AND Page Builder Blocks > 7.1.1

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-18	CVE-2024-44005	Cross-site Scripting vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wpsoul Greenshift – animation and page builder blocks allows Stored XSS.This issue affects Greenshift – animation and page builder blocks: from n/a through 9.3.7. network low complexity greenshiftwp CWE-79	5.4
2024-01-11	CVE-2023-6636	Unrestricted Upload of File with Dangerous Type vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation on the 'gspb_save_files' function in versions up to, and including, 7.6.2. network low complexity greenshiftwp CWE-434	7.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.