CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-26771

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sonalsinha21 SKT Blocks skt-blocks allows Stored XSS.This issue affects SKT Blocks: from n/a through <= 1.7.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.7%

CVSS Severity

CVSS v3 Score 6.5

References

https://patchstack.com/database/Wordpress/Plugin/skt-blocks/vulnerability/wordpress-skt-blocks-plugin-1-7-cross-site-scripting-xss-vulnerability?_s_id=cve

Products affected by CVE-2025-26771

Sktthemes » Skt Blocks » Version: N/A

cpe:2.3:a:sktthemes:skt_blocks:-
Sktthemes » Skt Blocks » Version: 1.1

cpe:2.3:a:sktthemes:skt_blocks:1.1
Sktthemes » Skt Blocks » Version: 1.2

cpe:2.3:a:sktthemes:skt_blocks:1.2
Sktthemes » Skt Blocks » Version: 1.3

cpe:2.3:a:sktthemes:skt_blocks:1.3
Sktthemes » Skt Blocks » Version: 1.4

cpe:2.3:a:sktthemes:skt_blocks:1.4
Sktthemes » Skt Blocks » Version: 1.5

cpe:2.3:a:sktthemes:skt_blocks:1.5
Sktthemes » Skt Blocks » Version: 1.6

cpe:2.3:a:sktthemes:skt_blocks:1.6
Sktthemes » Skt Blocks » Version: 1.7

cpe:2.3:a:sktthemes:skt_blocks:1.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-26771

Products

Pricing

Contact Us