The changelog for the latest version of Premium Blocks for Gutenberg is “Fixed: Security issues fixed.” Looking at the changes made in that version we found that it was fixing the same authenticated persistent cross-site scripting (XSS) vulnerability we had found in another plugin by the same developer.

…

[Read more]