CVE-2024-3564 | Content Blocks Plugin up to 3.3.0 on WordPress Shortcode file inclusion

Posted by Angelo Barbosa | May 31, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Content Blocks Plugin up to 3.3.0 on WordPress. Affected by this issue is some unknown functionality of the component Shortcode Handler. The manipulation leads to file inclusion.

This vulnerability is handled as CVE-2024-3564. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-3564 | Content Blocks Plugin up to 3.3.0 on WordPress Shortcode file inclusion

Related Posts

CVE-2024-31170 | Open Networking Foundation libfluid 0.1.0 unpack out-of-bounds

CVE-2024-4745 | RafflePress Giveaways and Contests Plugin up to 1.12.4 on WordPress authorization

CVE-2024-9079 | code-projects Student Record System 1.0 /marks.php coursename sql injection

CVE-2024-38303 | Dell PowerEdge Platform up to 2.22.0 14G Intel BIOS input validation (dsa-2024-309)