CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-26998

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sonalsinha21 SKT Blocks – Gutenberg based Page Builder allows Stored XSS. This issue affects SKT Blocks – Gutenberg based Page Builder: from n/a through 1.8.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.8%

CVSS Severity

CVSS v3 Score 6.5

References

https://patchstack.com/database/wordpress/plugin/skt-blocks/vulnerability/wordpress-skt-blocks-gutenberg-based-page-builder-plugin-1-8-cross-site-scripting-xss-vulnerability?_s_id=cve

Products affected by CVE-2025-26998

Sktthemes » Skt Blocks » Version: N/A

cpe:2.3:a:sktthemes:skt_blocks:-
Sktthemes » Skt Blocks » Version: 1.1

cpe:2.3:a:sktthemes:skt_blocks:1.1
Sktthemes » Skt Blocks » Version: 1.2

cpe:2.3:a:sktthemes:skt_blocks:1.2
Sktthemes » Skt Blocks » Version: 1.3

cpe:2.3:a:sktthemes:skt_blocks:1.3
Sktthemes » Skt Blocks » Version: 1.4

cpe:2.3:a:sktthemes:skt_blocks:1.4
Sktthemes » Skt Blocks » Version: 1.5

cpe:2.3:a:sktthemes:skt_blocks:1.5
Sktthemes » Skt Blocks » Version: 1.6

cpe:2.3:a:sktthemes:skt_blocks:1.6
Sktthemes » Skt Blocks » Version: 1.7

cpe:2.3:a:sktthemes:skt_blocks:1.7
Sktthemes » Skt Blocks » Version: 1.8

cpe:2.3:a:sktthemes:skt_blocks:1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-26998

Products

Pricing

Contact Us