cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-1452,https://securityvulnerability.io/vulnerability/CVE-2024-1452,Sensitive Information Exposure in GenerateBlocks Plugin for WordPress,"The GenerateBlocks plugin for WordPress exhibits a vulnerability that allows authenticated users with contributor-level access or higher to view sensitive content. This includes access to posts and pages that are in draft status, marked as private, or scheduled for future publication. Exploitation of this vulnerability could lead to unauthorized exposure of unpublished content, undermining user privacy and content integrity.",Wordpress,Generateblocks,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-03-13T15:26:52.963Z,0
CVE-2021-24751,https://securityvulnerability.io/vulnerability/CVE-2021-24751,GenerateBlocks < 1.4.0 - Contributor+ Stored Cross-Site Scripting,"The GenerateBlocks WordPress plugin before 1.4.0 does not validate the generateblocks/container block's tagName attribute, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks.",Wordpress,Generateblocks,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2021-11-29T08:25:33.000Z,0