GCVE - cpe:2.3:a:radiustheme:radius_blocks:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:radiustheme:radius_blocks:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Radiustheme (`0725c1b0-e09b-5bd8-8b3b-7e2c6e70aedf`)
Product	Radius Blocks (`cf506515-a0eb-57d5-acd0-71527ae063e6`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-64282`	vulnerable	2026-06-03 15:09:37.664238	WordPress Radius Blocks plugin <= 2.2.1 - Insecure Direct Object References (IDOR) vulnerability MEDIUM (4.3) Authorization Bypass Through User-Controlled Key vulnerability in RadiusTheme Radius Blocks radius-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Radius Blocks: from n/a through <= 2.2.1. Published: 2025-12-18T16:18:54.393Z Updated: 2026-04-28T16:14:13.350Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/radius-blocks/vulnerability/wordpress-radius-blocks-plugin-2-2-1-insecure-direct-object-references-idor-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-32159`	vulnerable	2026-06-03 15:00:40.144644	WordPress Radius Blocks plugin <= 2.2.1 - Local File Inclusion vulnerability HIGH (7.5) Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RadiusTheme Radius Blocks radius-blocks allows PHP Local File Inclusion.This issue affects Radius Blocks: from n/a through <= 2.2.1. Published: 2025-04-04T15:58:42.442Z Updated: 2026-04-28T16:12:17.965Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/radius-blocks/vulnerability/wordpress-radius-blocks-plugin-2-2-1-local-file-inclusion-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-24712`	vulnerable	2026-06-03 14:59:56.716100	WordPress Radius Blocks – WordPress Gutenberg Blocks Plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability MEDIUM (5.4) Cross-Site Request Forgery (CSRF) vulnerability in RadiusTheme Radius Blocks radius-blocks allows Cross Site Request Forgery.This issue affects Radius Blocks: from n/a through <= 2.1.2. Published: 2025-01-24T17:25:01.513Z Updated: 2026-04-28T16:11:32.790Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/radius-blocks/vulnerability/wordpress-radius-blocks-wordpress-gutenberg-blocks-plugin-2-1-2-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-54272`	vulnerable	2026-06-03 14:57:41.056625	WordPress Radius Blocks plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability MEDIUM (6.5) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RadiusTheme Radius Blocks radius-blocks allows Stored XSS.This issue affects Radius Blocks: from n/a through <= 2.1.2. Published: 2024-12-13T14:24:47.741Z Updated: 2026-04-28T16:10:48.655Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/radius-blocks/vulnerability/wordpress-radius-blocks-plugin-2-1-2-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.