CVE-2025-46235 – SKT Blocks – Gutenberg based Page Builder Cross-site Scripting

April 22, 2025

CVE ID : CVE-2025-46235

Published : April 22, 2025, 10:15 a.m. | 58 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in sonalsinha21 SKT Blocks – Gutenberg based Page Builder allows Stored XSS. This issue affects SKT Blocks – Gutenberg based Page Builder: from n/a through 2.0.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46236 – Link Software LLC HTML Forms Stored Cross-site Scripting (XSS)

Next Article CVE-2025-46233 – Sirv CDN and Image Hosting Stored Cross-Site Scripting Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

AI is currently in its teenage years, battling raging hormones

Apple doesn’t need better AI as much as AI needs Apple to bring its A-game

DistroWatch Weekly, Issue 1125

Motion Highlights #9

The 2025 Wholesome Direct was chock-full of cozy casual games and aesthetic vibes

Online Scrap Portal Using PHP and MySQL

Online Scrap Portal Using PHP and MySQL

Master Image Processing in Node.js Using Sharp for Fast Web Apps

mkocansey/bladewind

Microsoft built a bloat-free, optimized Windows 11 UI for handheld gaming

Microsoft built a bloat-free, optimized Windows 11 UI for handheld gaming

DistroWatch Weekly, Issue 1125

Gradia is a Slick New Screenshot Annotation Tool for Linux

CVE-2025-46235 – SKT Blocks – Gutenberg based Page Builder Cross-site Scripting

US infrastructure could crumble under cyberattack, ex-NSA advisor warns

CVE-2025-4318 (CVSS 9.5): AWS Amplify RCE Flaw Exposed with PoC – CI/CD Pipelines at Risk

Multimodal Models Don’t Need Late Fusion: Apple Researchers Show Early-Fusion Architectures are more Scalable, Efficient, and Modality-Agnostic

From Kitchen To Conversion

CVE-2025-4575 – OpenSSL -addreject Option Truncation Vulnerability

CVE-2025-1416 – Proget MDM Password Retrieval Vulnerability

CVE-2025-48285 – Falang Multilanguage CSRF Vulnerability

Simplify your accounting, GST invoicing, and inventory management with GSTMate – your all-in-one desktop GST solution from Apptrop.

I expected this $20 Amazon Basics multitool to be junk, but it proved me wrong

CVE-2025-4268 – TOTOLINK A720R Authentication Bypass Vulnerability

CVE-2025-46235 – SKT Blocks – Gutenberg based Page Builder Cross-site Scripting

Related Posts