CourseVector Logo (white)

Hosting • Web • Marketing

Genesis Blocks <= 3.1.3 – CVE-2024-3563 (6.4)

Genesis Blocks <= 3.1.3 – CVE-2024-3563 (6.4)

Our managed hosting team at CourseVector is always on the lookout, fixing issues to ensure our clients’ websites run smoothly and securely. Recently, we addressed a vulnerability CVE-2024-3563 in the Genesis Blocks plugin for WordPress.

The Genesis Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s Sharing block in all versions up to, and including, 3.1.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

CVE-2024-3563

By promptly fixing such vulnerabilities, we protect our clients’ websites from potential threats. To have your site vigilantly protected like this, please take a look at our Managed WordPress hosting.

Happy Holidays!

With the holiday season upon us our staff will be taking some time to relax and enjoy time with their families.

We may be a bit slower to respond during this period. If you haven’t gotten a response within 24 hours during our normal business hours, please use our support request form and indicate it is an emergency and someone will get back to you quickly.

 

Search

Sign Up for Our Newsletter

Thank you for your interest in our newsletter! Fill in the form below to receive periodic updates on internet and website security, free cybersecurity posters, WordPress news, and more!

"*" indicates required fields

Name*

Your privacy is important to us. We do not share your information with anyone. You can opt out of our newsletter at any time.

Stay up to date with technology, scams, WordPress, and more. Follow CourseVector on Facebook today!