Vulnerabilities > Greenshiftwp > Greenshift Animation AND Page Builder Blocks > 9.3.4

DATE	CVE	VULNERABILITY TITLE	RISK
2025-02-25	CVE-2025-26884	Cross-site Scripting vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpsoul Greenshift allows Stored XSS. network low complexity greenshiftwp CWE-79	5.4
2024-12-12	CVE-2024-11181	Authorization Bypass Through User-Controlled Key vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 9.9.9.3 via the 'wp_reusable_render' shortcode due to insufficient restrictions on which posts can be included. network low complexity greenshiftwp CWE-639	4.3
2024-10-30	CVE-2024-50419	Incorrect Authorization vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Greenshift – animation and page builder blocks: from n/a through 9.7. network low complexity greenshiftwp CWE-863 critical	9.8
2024-09-18	CVE-2024-44005	Cross-site Scripting vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wpsoul Greenshift – animation and page builder blocks allows Stored XSS.This issue affects Greenshift – animation and page builder blocks: from n/a through 9.3.7. network low complexity greenshiftwp CWE-79	5.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.