CVE-2024-3564 | Content Blocks Plugin up to 3.3.0 on WordPress Shortcode file inclusion

Posted by Angelo Barbosa | May 31, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Content Blocks Plugin up to 3.3.0 on WordPress. Affected by this issue is some unknown functionality of the component Shortcode Handler. The manipulation leads to file inclusion.

This vulnerability is handled as CVE-2024-3564. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-3564 | Content Blocks Plugin up to 3.3.0 on WordPress Shortcode file inclusion

Related Posts

CVE-2024-45745 | TopQuadrant TopBraid EDG up to 8.0.0 XML DTD File xml external entity reference

CVE-2023-50825 | Terrier Tenacity iframe Shortcode Plugin up to 2.0 on WordPress cross site scripting

CVE-2023-44381 | October CMS prior 3.4.15 Template injection

CVE-2023-40264 | Atos Unify OpenScape Voice Trace Manager prior V8 R0.9.11 User Interface path traversal