CVE-2024-4260 | Page Builder Gutenberg Blocks Plugin up to 3.1.11 on WordPress Shortcode server-side request forgery

Posted by Angelo Barbosa | Jul 23, 2024 | CVE

A vulnerability has been found in Page Builder Gutenberg Blocks Plugin up to 3.1.11 on WordPress and classified as critical. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation leads to server-side request forgery.

This vulnerability was named CVE-2024-4260. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4260 | Page Builder Gutenberg Blocks Plugin up to 3.1.11 on WordPress Shortcode server-side request forgery

Related Posts

CVE-2024-42010 | RoundCube up to 1.5.7/1.6.7 Cascading Style Sheet mod_css_styles information disclosure

CVE-2024-51560 | Brokerage Technology Solutions Wave 2.0 up to 1.1.6 API Endpoint information exposure (CIVN-2024-0332)

CVE-2024-44744 | Malwarebytes Premium Security 5.0.0.883 Binaries Local Privilege Escalation

CVE-2023-7203 | Smart Forms Plugin up to 2.6.86 on WordPress AJAX Action cross-site request forgery