Welcome to WordPress Community Forum. Please login or sign up.

Nov 25, 2024, 12:57 PM

Login with username, password and session length

Shoutbox


Recent

Members
Stats
  • Total Posts: 55
  • Total Topics: 45
  • Online today: 5
  • Online ever: 136 (Apr 17, 2022, 11:37 PM)
Users Online
  • Users: 0
  • Guests: 24
  • Total: 24
24 Guests, 0 Users

Spectra WordPress Gutenberg Blocks <= 1.25.5 - XSS Vulnerability

Started by Kailash, Jun 14, 2022, 01:11 AM

Previous topic - Next topic

WordPress Premium Themes


Kailash

WordPress Spectra plugin <= 1.25.5 - Reflected Cross-Site Scripting (XSS) vulnerability

Plugin name: Spectra – WordPress Gutenberg Blocks
Vulnerable versions: <= 1.25.5
Fixed in: 1.25.6
CVE ID: N/A
Classification: Cross Site Scripting (XSS)
Publicly disclosed: 2022-06-13

Vulnerability Details

Reflected Cross-Site Scripting (XSS) vulnerability discovered by WPScanTeam in WordPress Spectra plugin (versions <= 1.25.5).

Solution

Update the WordPress Spectra plugin to the latest available version (at least 1.25.6).

Plugin Link: https://wordpress.org/plugins/ultimate-addons-for-gutenberg/

WordPress Premium Themes