Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Team Section block – Showcase team members in various layouts and designs. 1.0.9

  • Severity: medium-risk
  • Status: Fixed
  • Publication: February 23, 2025

The Team Section Block plugin for WordPress has a security issue where unauthorized users can inject harmful web scripts into pages. This can happen in versions up to 1.0.9 because the plugin does not properly filter and protect the information being input and displayed. This can only be done by attackers who have contributor-level access or higher.

Detected in:

Team Section block – Showcase team members in various layouts and designs. fixed vulnerable versions: >= * <= 1.0.9
Team Section Block – Showcase Team Members with Layout Options fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.