VYPR

Greenshift Animation And Page Builder Blocks

by Greenshiftwp

Source repositories

CVEs (8)

  • CVE-2026-2593MedMar 5, 2026
    risk 0.42cvss 6.4epss 0.00

    The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `_gspb_post_css` post meta value and the `dynamicAttributes` block attribute in all versions up to, and including, 12.8.5 due to insufficient input…

  • CVE-2025-26884MedFeb 25, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpsoul Greenshift greenshift-animation-and-page-builder-blocks allows Stored XSS.This issue affects Greenshift: from n/a through <= 10.8.

  • CVE-2026-4895MedApr 11, 2026
    risk 0.35cvss 6.4epss 0.00

    The GreenShift - Animation and Page Builder Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 12.8.9 This is due to insufficient input sanitization and output escaping in the gspb_greenShift_block_script_assets() function.…

  • CVE-2025-11841MedNov 4, 2025
    risk 0.35cvss 6.4epss 0.00

    The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Chart Data attributes in all versions up to, and including, 12.2.7 due to insufficient input sanitization and output escaping. This makes it possible…

  • CVE-2024-50419MedOct 30, 2024
    risk 0.35cvss 5.4epss 0.00

    Incorrect Authorization vulnerability in wpsoul Greenshift greenshift-animation-and-page-builder-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Greenshift: from n/a through <= 9.7.

  • CVE-2026-1927MedFeb 5, 2026
    risk 0.28cvss 5.4epss 0.00

    The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the greenshift_app_pass_validation() function in all versions up to, and including, 12.6. This makes it possible for…

  • CVE-2026-2371MedMar 7, 2026
    risk 0.27cvss 5.3epss 0.00

    The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 12.8.3. This is due to missing authorization and post status validation in the `gspb_el_reusable_load()` AJAX…

  • CVE-2026-2589MedMar 6, 2026
    risk 0.27cvss 5.3epss 0.00

    The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 12.8.3 via the automated Settings Backup stored in a publicly accessible file. This makes it possible for…