Wpengine Genesis Blocks — known CVE vulnerabilities
Every CVE whose affected-product data names Wpengine Genesis Blocks, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-2761 — CVSS 6.8 (medium): The Genesis Blocks WordPress plugin before 3.1.3 does not properly escape data input provided to some of its blocks, allowing using with at…
CVE-2024-3901 — CVSS 6.8 (medium): The Genesis Blocks WordPress plugin through 3.1.3 does not properly escape attributes provided to some of its custom blocks, making it…
CVE-2024-3563 — CVSS 6.4 (medium): The Genesis Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Sharing block in all versions up to…