cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12495,https://securityvulnerability.io/vulnerability/CVE-2024-12495,Stored Cross-Site Scripting in Bootstrap Blocks for WP Editor Plugin,"The Bootstrap Blocks for WP Editor plugin for WordPress is susceptible to a Stored Cross-Site Scripting vulnerability. This flaw exists in the 'gtb-bootstrap/column' block, where inadequate input sanitization and output escaping allow authenticated attackers, with Contributor-level access or higher, to insert arbitrary web scripts. Such scripts execute whenever a user visits a page with the injected content, posing a significant security risk to users accessing affected sites.",Wordpress,Bootstrap Blocks For WP Editor V2,6.4,MEDIUM,0.00044999999227002263,false,,false,false,false,false,false,false,2025-01-07T06:40:58.027Z,0