CVE-2024-11219

Name of the Vulnerable Software and Affected Versions Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress versions up to, and including, 3.0.6

Description The issue allows unauthenticated attackers to view arbitrary images on the server, which can contain sensitive information, via the get image function. This enables access to potentially confidential data stored in images on the server.

Recommendations For versions up to, and including, 3.0.6, consider disabling the get image function until a patch is available to prevent exploitation. Restrict access to sensitive images on the server to minimize the risk of information disclosure. Update to a version later than 3.0.6 when available.