CVE-2025-31844 Information

Description

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Noor Alam Magical Blocks allows Stored XSS. This issue affects Magical Blocks: from n/a through 1.0.10.

Reference

https://patchstack.com/database/wordpress/plugin/magical-blocks/vulnerability/wordpress-magical-blocks-plugin-1-0-10-cross-site-scripting-xss-vulnerability?_s_id=cve