exploitDog

CVE-2025-54708

Опубликовано: 14 авг. 2025

Источник: nvd

EPSS Низкий

Описание

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins B Blocks b-blocks allows DOM-Based XSS.This issue affects B Blocks: from n/a through <= 2.0.5.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/b-blocks/vulnerability/wordpress-b-blocks-plugin-plugin-2-0-5-cross-site-scripting-xss-vulnerability?_s_id=cve

EPSS

Процентиль: 10%

0.00034

Низкий

Дефекты

CWE-79

Связанные уязвимости

GHSA-xq3m-wq8x-cx6h

CVSS3: 6.5

github

8 месяцев назад

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins B Blocks allows DOM-Based XSS. This issue affects B Blocks: from n/a through 2.0.5.

EPSS

Процентиль: 10%

0.00034

Низкий

Дефекты

CWE-79