Known Vulnerabilities for products from Crocoblock
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Crocoblock".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-32355 json | Not Provided | 2026-03-13 | 2026-04-01 | |
| CVE-2026-28134 json | Not Provided | 2026-03-05 | 2026-04-01 | |
| CVE-2025-69333 json | Not Provided | 2026-01-07 | 2026-04-23 | |
| CVE-2025-68504 json | Not Provided | 2025-12-29 | 2026-04-23 | |
| CVE-2025-68503 json | Not Provided | 2025-12-29 | 2026-04-23 | |
| CVE-2025-68502 json | Not Provided | 2025-12-29 | 2026-04-23 | |
| CVE-2025-68499 json | Not Provided | 2025-12-30 | 2026-04-23 | |
| CVE-2025-68498 json | Not Provided | 2025-12-30 | 2026-04-23 | |
| CVE-2025-64355 json | Not Provided | 2025-12-18 | 2026-04-23 | |
| CVE-2025-55714 json | Not Provided | 2025-08-14 | 2026-04-23 | |
| CVE-2024-4626 json | The JetWidgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘layout_type’ and ... | Not Provided | 2024-06-20 | 2026-04-08 |
| CVE-2024-2507 json | The JetWidgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the widget button URL in a... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2024-2138 json | The JetWidgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Animated Box widget in... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2023-39157 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 8.8 - HIGH | 2023-12-31 | 2024-01-05 |
| CVE-2023-33212 json | Cross-Site Request Forgery (CSRF) vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin <= 3.0.6... | 8.8 - HIGH | 2023-05-28 | 2023-06-02 |
| CVE-2023-1406 json | The JetEngine WordPress plugin before 3.1.3.1 includes uploaded files without adequately ensuring that they are not executabl... | 8.8 - HIGH | 2023-04-10 | 2023-11-07 |
| CVE-2023-0086 json | The JetWidgets for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and includin... | Not Provided | 2023-01-05 | 2026-04-08 |
| CVE-2023-0034 json | The JetWidgets For Elementor WordPress plugin before 1.0.14 does not validate and escape some of its shortcode attributes bef... | 5.4 - MEDIUM | 2023-02-13 | 2023-11-07 |
| CVE-2021-41844 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2021-12-15 | 2023-08-08 |
| CVE-2021-38607 json | Crocoblock JetEngine before 2.6.1 allows XSS by remote authenticated users via a custom form input. | 5.4 - MEDIUM | 2021-08-16 | 2021-08-23 |