Qi Blocks

Vulnerabilities 9Slug qi-blocksLatest version 1.4.9WordPress.org →

Minimum safe version

1.4.4

Update to 1.4.4 or later to address 9 fixable vulnerabilities

Latest available1.4.9 ✓

Medium 4.3

2025-11-15< 1.4.4

CVE-2025-12182

Medium 6.5

2025-11-13< 1.4.4

CVE-2025-64383

Medium 4.3

2025-11-01< 1.4.4

CVE-2025-12180

Medium 5.4

2025-05-19< 1.4

Qi Blocks <= 1.3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ToC Block

Medium 5.4

2025-05-19< 1.4

Qi Blocks <= 1.3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Block

Medium 5.4

2025-05-19< 1.4

WordPress Qi Blocks Plugin < 1.4 is vulnerable to Cross Site Scripting (XSS)

High 7.5

2024-10-23< 1.3.3

CVE-2024-49690

Medium 6.5

2024-07-20< 1.3.1

CVE-2024-38712

Medium 5.4

2024-06-06< 1.3.0

CVE-2024-5221