Themeisle: >> Otter Blocks >> 2.6.11 Security Vulnerabilities
The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 3.0.6 via the get_image function. This makes it possible for unauthenticated attackers to view arbitrary images on the server, which can contain sensitive information.
CVSS Score
5.3
EPSS Score
0.007
Published
2024-11-27
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Themeisle Otter Blocks PRO.This issue affects Otter Blocks PRO: from n/a through 2.6.11.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-06-08