CVE-2026-6703

Name of the Vulnerable Software and Affected Versions Responsive Blocks – Page Builder for Blocks & Patterns versions prior to 2.2.2

Description The plugin fails to properly verify if a user is authorized to perform specific actions. This allows authenticated attackers with contributor-level access or higher to modify global site-wide configuration options. Affected settings include the ability to toggle custom CSS, disable blocks, change layout defaults such as content width, container padding, and container gap, and alter auto-block-recovery behavior.

Recommendations Update to a version newer than 2.2.1.