Vulnerabilities > Motopress > Getwid > 2.0.5

DATE CVE VULNERABILITY TITLE RISK
2024-11-20 CVE-2024-10872 Cross-site Scripting vulnerability in Motopress Getwid
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `template-post-custom-field` block in all versions up to, and including, 2.0.12 due to insufficient input sanitization and output escaping.
network
low complexity
motopress CWE-79
5.4
5.4
2024-05-02 CVE-2024-3588 Cross-site Scripting vulnerability in Motopress Getwid
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown block in all versions up to, and including, 2.0.7 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
motopress CWE-79
5.4
5.4
2024-04-09 CVE-2024-1948 Cross-site Scripting vulnerability in Motopress Getwid
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the block content in all versions up to, and including, 2.0.5 due to insufficient input sanitization and output escaping.
network
low complexity
motopress CWE-79
5.4
5.4