Vulnerabilities (CVE)

Filtered by vendor Godaddy Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-7132 1 Godaddy 1 Coblocks 2024-10-07 N/A 4.8 MEDIUM
The Page Builder Gutenberg Blocks WordPress plugin before 3.1.13 does not escape the content of post embed via one of its block, which could allow users with the capability to publish posts (editor and admin by default) to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
CVE-2021-26276 1 Godaddy 1 Node-config-shield 2024-08-03 5.0 MEDIUM 5.3 MEDIUM
scripts/cli.js in the GoDaddy node-config-shield (aka Config Shield) package before 0.2.2 for Node.js calls eval when processing a set command. NOTE: the vendor reportedly states that this is not a vulnerability. The set command was not intended for use with untrusted data
CVE-2016-10903 1 Godaddy 1 Godaddy Email Marketing 2024-02-28 6.8 MEDIUM 8.8 HIGH
The GoDaddy godaddy-email-marketing-sign-up-forms plugin before 1.1.3 for WordPress has CSRF.