- Description
- The Block Logic โ Full Gutenberg Block Display Control plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.0.8 via the block_logic_check_logic function. This is due to the unsafe evaluation of user-controlled input. This makes it possible for authenticated attackers, with Contributor-level access and above, to execute code on the server.
- Source
- security@wordfence.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- security@wordfence.com
- CWE-94
- Hype score
- Not currently trending
๐จ CVE-2025-2303 ๐ด HIGH (8.8) ๐ข landwire - Block Logic โ Full Gutenberg Block Display Control ๐๏ธ * ๐ https://t.co/4UWY6xhI3C ๐ https://t.co/HJm1OjgDCC #CyberCron #VulnAlert #InfoSec https://t.co/Mt4RQyPnkB
@cybercronai
23 Mar 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๏ฟฝ๏ฟฝ CVE-2025-2303 - WordPress - HIGH ๐จ ๐๏ธ Date published 2025-03-22 07:15:24 UTC #WordPress #CyberSecurity #InfoSec #Vulnerability #TechNews https://t.co/P9c5JUVnqE
@vulns_space
22 Mar 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-2303: HIGH] WordPress plugin vulnerable to Remote Code Execution in all versions up to 1.0.8. Exploited through block_logic_check_logic function due to unsafe user input evaluation, enabling attackers to...#cybersecurity,#vulnerability https://t.co/t6grU8oglH https://t.
@CveFindCom
22 Mar 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes