Approved changes feed: RSS · Atom

cpe:2.3:a:cozythemes:cozy_blocks:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorCozythemes (d660fbd2-afca-5c6f-813d-453ea22c063c)
ProductCozy Blocks (1a595e28-8290-5826-9935-7fbfaaa1ab6b)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-59573 vulnerable 2026-06-08 07:35:22.364505 WordPress Cozy Blocks Plugin <= 2.1.29 - Content Injection Vulnerability
MEDIUM (5.3)
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in CozyThemes Cozy Blocks cozy-addons allows Code Injection.This issue affects Cozy Blocks: from n/a through <= 2.1.29.
Published: 2025-09-22T18:25:56.508Z
Updated: 2026-04-28T16:13:52.686Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-47485 vulnerable 2026-06-08 07:27:14.458053 WordPress Cozy Blocks plugin <= 2.1.22 - Broken Access Control Vulnerability
MEDIUM (5.3)
Missing Authorization vulnerability in CozyThemes Cozy Blocks cozy-addons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cozy Blocks: from n/a through <= 2.1.22.
Published: 2025-05-07T14:19:49.606Z
Updated: 2026-04-28T16:12:42.772Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-30838 vulnerable 2026-06-08 07:17:01.901908 WordPress Cozy Blocks plugin <= 2.1.6 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CozyThemes Cozy Blocks cozy-addons allows Stored XSS.This issue affects Cozy Blocks: from n/a through <= 2.1.6.
Published: 2025-03-27T10:55:22.567Z
Updated: 2026-04-28T16:11:58.778Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-50502 vulnerable 2026-06-08 06:52:10.274744 WordPress Cozy Blocks plugin <= 2.0.18 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CozyThemes Cozy Blocks cozy-addons allows DOM-Based XSS.This issue affects Cozy Blocks: from n/a through <= 2.0.18.
Published: 2024-10-28T12:42:49.844Z
Updated: 2026-05-11T21:21:22.297Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-50441 vulnerable 2026-06-08 06:52:10.098043 WordPress Cozy Blocks plugin <= 2.0.15 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CozyThemes Cozy Blocks cozy-addons allows Stored XSS.This issue affects Cozy Blocks: from n/a through <= 2.0.15.
Published: 2024-10-28T18:03:49.411Z
Updated: 2026-05-11T21:22:32.611Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-47355 vulnerable 2026-06-08 06:48:11.833638 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.