Vulnerabilities in Jegstudio
17 resultsCVE-2023-35875MEDIUMWordPress Gutenverse – Gutenberg Blocks – Page Builder for Site Editor plugin <= 1.8.5 - Broken Access Control vulnerabilityEPSS 0.6%CVE-2025-14984MEDIUMGutenverse Form <= 2.3.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.3%CVE-2025-66079MEDIUMWordPress Gutenverse Form plugin <= 2.2.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-7727MEDIUMGutenverse <= 3.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Text and Fun Fact BlocksEPSS 0.3%CVE-2024-43920MEDIUMWordPress Gutenverse – Gutenberg Blocks – Page Builder for Site Editor plugin <= 1.9.4 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-38785MEDIUMWordPress Gutenverse plugin <= 1.9.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-68511MEDIUMWordPress Gutenverse Form plugin <= 2.3.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-2893MEDIUMGutenverse <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via countdown BlockEPSS 0.2%CVE-2025-66065MEDIUMWordPress Gutenverse plugin <= 3.2.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62090MEDIUMWordPress Gutenverse News – Advanced News Magazine Blog Gutenberg Blocks Addons plugin <= 3.0.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-5234MEDIUMGutenverse News <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via elementId ParameterEPSS 0.2%CVE-2026-3001MEDIUMGutenverse <= 3.4.6 - Reflected Cross-Site Scripting via 's' ParameterEPSS 0.2%CVE-2024-33690MEDIUMWordPress Financio theme <= 1.1.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-2924MEDIUMGutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem <= 3.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'imageLoad'EPSS 0.2%CVE-2024-33685MEDIUMWordPress Startupzy theme <= 1.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-2868MEDIUMGutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem <= 3.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'separatorIconSVG'EPSS 0.2%CVE-2026-2948MEDIUMGutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem <= 3.5.3 - Authenticated (Contributor+) Server-Side Request Forgery via 'imageUrl'EPSS 0.2%