CVE-2025-8059

Published August 12th, 2025

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

The B Blocks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization and improper input validation within the rgfr_registration() function in all versions up to, and including, 2.0.6. This makes it possible for unauthenticated attackers to create a new account and assign it the administrator role.

bBlocks – Essential Gutenberg Blocks & Patterns Collection

bBlocks – Advanced Gutenberg Blocks Plugin to Extend the WordPress Block Editor with Page Builder Features, 60+ Customizable Blocks, Layout Controls, Animations, Sliders, Countdowns, and More <a href="https://bblockswp.com/" rel="nofollow ugc">bBlocks</a> | <a href="https://bblockswp.com/docs/" rel="nofollow ugc">Documentation</a> | <a href="https://bblockswp.com/pricing" rel="nofollow ugc">Pricing</a> | <a href="https://bplugins.com/support/" rel="nofollow ugc">Support</a> | <a href="https://bblockswp.com/#demos" rel="nofollow ugc">Demo</a> <iframe loading="lazy" class="youtube-player" width="750" height="422" src="https://www.youtube.com/embed/Ml4UehEwI-s?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent" allowfullscreen="true" style="border:0;" sandbox="allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox"></iframe> <a href="https://bblockswp.com/" rel="nofollow ugc">bBlocks</a> is a lightweight and flexible Gutenberg plugin that transforms the native block editor into a powerful page builder for WordPress. Designed with performance and usability in mind, bBlocks extends the capabilities of core blocks by adding 60+ custom elements, pre-built Gutenberg templates, and flexible layout options—all without the need for bulky third-party tools. Whether you’re building a landing page, blog layout, portfolio, or full website, bBlocks helps you design faster using customizable blocks, reusable patterns, and layout-ready components. It’s an ideal page builder for Gutenberg users who want more control while keeping their sites fast and efficient. <h3>Key Features – Free Version</h3> <ul> <li> 60+ Custom Blocks: Enhance your content with blocks for Posts, Sliders, Buttons, Countdowns, Cards, Charts, and more. </li> <li> Advanced Block Customization: Adjust typography, spacing, color, and visibility. Fine-tune every block to match your brand identity. </li> <li> Pre-Designed Layouts & Themes: Many blocks include layout presets and Gutenberg templates for faster page creation. </li> <li> Custom Icon Library: Access a wide range of icons, including Font Awesome and Bootstrap, to personalize your designs. </li> <li> Google Fonts Support: Use any Google Font directly within the block typography settings. </li> <li> Performance-Optimized: Minimal CSS and JS ensures faster loading and better compatibility with default blocks and themes. </li> <li> Reusable Patterns: Combine blocks into reusable patterns for consistent, site-wide layouts. </li> </ul> <h3>Pro Features – Unlock Advanced Block Controls</h3> Upgrade to <a href="https://bblockswp.com/pricing" rel="nofollow ugc">bBlocks Pro</a> to supercharge specific blocks with advanced layout settings, styling controls, device visibility options, and interactive enhancements. These premium features are perfect for building more dynamic, flexible, and professional-looking pages using the Gutenberg editor. <h3>Posts Block</h3> Enhance your content display with rich layout options and advanced filtering: <ul> <li>Layouts & Sub-Layouts: Unlock more grid, list, and ticker layouts.</li> <li>Pages as Posts: Easily display pages alongside posts.</li> <li>Tag & Custom Taxonomy Filters: Filter by tags or any custom taxonomy.</li> <li>Post Offset: Skip the first N posts—great for creating featured sections.</li> <li>Include/Exclude by ID: Show or hide specific posts using their IDs.</li> <li>Exclude Current Post: Useful for post templates—avoid duplication.</li> <li>Custom Pagination: Add numbered pagination below your post grid.</li> <li>Element Sorting: Reorder title, meta, excerpt, and other elements.</li> <li>Meta Icons & Author Link Toggle: Use custom icons and control author link visibility.</li> <li>Taxonomies in Meta: Display tags or categories inside post meta.</li> <li>Reading Time: Auto-display estimated reading time.</li> <li>Excerpt from Content: Show an excerpt pulled directly from the content body.</li> <li>Feature Image Size: Choose from predefined or custom image sizes.</li> <li>Ticker Layout Options: Get more control over ticker animations and styles.</li> <li>Read More Positioning: Control the position of the read more link/button.</li> <li>Shortcode Support: Use the Posts block anywhere via shortcode.</li> <li>Query Filter Hook: Use b_blocks_posts_query for custom query modifications.</li> </ul> <h3>Countdown Block</h3> Create urgency and time-sensitive offers with deeper control: <ul> <li>Post-Expiration Display: Show a custom message or layout after the countdown ends.</li> <li>Hide at Zero: Automatically hide the block when the timer ends.</li> <li>Device Visibility: Show or hide the countdown on mobile or tablet.</li> <li>Prefix & Suffix Options: Add text or a button before/after the timer with custom styling.</li> <li>Prefix/Suffix Direction: Define the layout flow (horizontal/vertical).</li> <li>Individual Box Styling: Style each countdown unit separately (digit, label, background).</li> <li>Dismiss Button: Let users hide the countdown manually.</li> <li>Extra Patterns: Access a library of unique countdown layouts.</li> <li>Shortcode Integration: Use the countdown anywhere via shortcode.</li> </ul> <h3>Slider Block</h3> Build dynamic carousels with interaction settings and layout enhancements: <ul> <li>Slide Border: Add custom borders around individual slides.</li> <li>Autoplay Tweaks: Set delay time, reverse direction, stop on last slide, and more.</li> <li>Interaction Control: Pause on mouse enter, disable autoplay on interaction.</li> <li>Free Mode: Drag freely between slides with optional sticky behavior.</li> <li>Slide Effects: Choose from Cube, Coverflow, Flip, and Card transitions.</li> <li>Device-Specific Controls: Show/hide navigation or pagination by device (mobile/tablet).</li> <li>Keyboard & Mousewheel Navigation: Control the slider using keyboard arrows or scroll.</li> <li>Wrapper Styling: Customize slider background and padding for perfect alignment.</li> <li>Shortcode Support: Use sliders anywhere via shortcode.</li> </ul> <h3>Image Comparison Block</h3> Compare before/after visuals with added styling and automation: <ul> <li>Label Position: Position labels above, below, or within the images.</li> <li>Custom Line Shape & Size: Make your slider line visually unique and fit your design.</li> <li>Auto-Slide & Speed: Enable automatic transitions with speed control.</li> <li>Hover/Click Move: Slide on hover or click for interactive experiences.</li> <li>Stop on Hover: Pause animation when hovered.</li> <li>Line & Handler Styling: Customize color, thickness, and handler appearance.</li> <li>Icon Color: Match icons with your site’s theme colors.</li> </ul> <h3>Button Block</h3> Turn simple buttons into multifunctional actions and popups: <ul> <li>Link or Popup Actions: Choose between standard link or popup trigger.</li> <li>Rel & Referrer Attributes: Set advanced HTML attributes for privacy and SEO.</li> <li>Download Custom File Name (experimental): Define a name when triggering file downloads.</li> <li>Icon Positioning: Display icons to the left or right of button text.</li> <li>Tooltip Placement: Show tooltips in various positions.</li> <li>Device Visibility: Hide buttons on specific devices (desktop, tablet, mobile).</li> <li>Popup Content Types: Display image, video, audio, iframe, block content, or documents (.pdf, .doc, .xlsx).</li> <li>Popup Security: Add password protection or login requirement to popups.</li> </ul> <h3>Lottie Player Block</h3> Bring engaging animations to your site with interactive Lottie files: <ul> <li>Upload JSON Files: Upload and manage Lottie animations from the media library.</li> <li>Hover Animation: Trigger animations on mouseover.</li> <li>Animation Modes: Choose between bounce or normal play.</li> <li>Direction & Loop Count: Control play direction and repeat count.</li> <li>Speed & Interval: Fine-tune playback speed and autoplay interval.</li> <li>Open in New Tab: Add links that open in a new browser tab.</li> <li>Interactivity Rules: Define when and where the animation should play.</li> <li>Caption & Styling: Add and style a caption with full typography, spacing, and color controls.</li> </ul> <a href="https://bblockswp.com/pricing" rel="nofollow ugc">Try the Pro Version</a> – Unlock all premium features today! <h3>Available Blocks</h3> bBlocks adds over 60+ custom blocks to your Gutenberg block editor, designed to extend the functionality of core blocks and help you build engaging layouts with ease. Below is a list of all available blocks, each offering intuitive controls and flexible design options: <ul> <li> <a href="https://bblockswp.com/blocks/row-columns/" rel="nofollow ugc">Row Columns</a>: Create responsive multi-column layouts with flexible width, spacing, and alignment options. Ideal for building custom grid structures. </li> <li> <a href="https://bblockswp.com/blocks/container/" rel="nofollow ugc">Container</a>: Group multiple blocks into a single styled section. Add background color, borders, padding, and other visual adjustments. </li> <li> <a href="https://bblockswp.com/blocks/section-heading/" rel="nofollow ugc">Section Heading</a>: Add a styled section title with optional separator and description. Easily toggle the visibility of each element. </li> <li> <a href="https://bblockswp.com/blocks/shape-divider/" rel="nofollow ugc">Shape Divider</a>: Add decorative shape dividers between sections for smooth visual transitions. </li> <li> <a href="https://bblockswp.com/blocks/advanced-image/" rel="nofollow ugc">Advanced Image</a>: Display a custom image or dynamic post featured image with advanced styling options like hover effects, borders, and overlays. </li> <li> <a href="https://bblockswp.com/blocks/accordion-block/" rel="nofollow ugc">Accordion Block</a>: Create collapsible sections with custom titles and content. Perfect for FAQs, accordions, or collapsible content. </li> <li> <a href="https://bblockswp.com/blocks/advanced-tabs/" rel="nofollow ugc">Advanced Tabs</a>: Add multiple tabs with custom titles and content. Perfect for creating tabbed content sections. </li> <li> Breadcrumb: Add a breadcrumb navigation to your site to help users navigate back to previous pages. </li> <li> <a href="https://bblockswp.com/blocks/video/" rel="nofollow ugc">Video</a>: Embed self-hosted or external video content in a beautifully designed video player with optional poster image and controls. </li> <li> <a href="https://bblockswp.com/blocks/gift-image/" rel="nofollow ugc">GIF Image</a>: Upload and showcase animated GIFs to add dynamic visuals to your content. </li> <li> <a href="https://bblockswp.com/blocks/image-gallery/" rel="nofollow ugc">Image Gallery</a>: Display a collection of images in a stylish, responsive gallery layout. Great for portfolios or product showcases. </li> <li> <a href="https://bblockswp.com/blocks/image-comparison/" rel="nofollow ugc">Image Comparison</a>: Visually compare two images with a draggable slider. Perfect for before/after effects. </li> <li> <a href="https://bblockswp.com/blocks/lottie-player/" rel="nofollow ugc">Lottie Player</a>: Embed lightweight, interactive animations using Lottie JSON files. Supports autoplay, hover triggers, and speed control. </li> <li> <a href="https://bblockswp.com/blocks/list/" rel="nofollow ugc">List</a>: Display a list of items with custom markers, icons, and styles. </li> <li> <a href="https://bblockswp.com/blocks/3d-viewer/" rel="nofollow ugc">3D Viewer</a>: Display 3D model files directly on your page with rotation, zoom, and full interaction support. </li> <li> <a href="https://bblockswp.com/blocks/slider/" rel="nofollow ugc">Slider</a>: Create responsive image or content sliders with pagination, navigation, and animation effects. </li> <li> <a href="https://bblockswp.com/blocks/flip-box/" rel="nofollow ugc">Flip Boxes</a>: Add interactive flip cards with front and back content, ideal for showcasing features or team members with engaging motion. </li> <li> <a href="https://bblockswp.com/blocks/carousel/" rel="nofollow ugc">Carousel</a>: Modern carousel for showcasing content. Supports unlimited slides with complete block flexibility inside. </li> <li> Table: Create beautiful and professional tables with custom styling and behavior options. </li> <li> <a href="https://bblockswp.com/blocks/form/" rel="nofollow ugc">Form</a>:Create Beautiful and Professional Login and Register Forms. </li> <li> <a href="https://bblockswp.com/blocks/countdown/" rel="nofollow ugc">Countdown</a>: Display a live countdown timer for events, sales, or launches with custom styling and behavior options. </li> <li> <a href="https://bblockswp.com/blocks/counters/" rel="nofollow ugc">Counters</a>: Show animated numeric counters to highlight statistics, milestones, or achievements. </li> <li> <a href="https://bblockswp.com/blocks/alert/" rel="nofollow ugc">Alert</a>: Display styled notification boxes to inform, warn, or alert users. Supports different message types and icons. </li> <li> <a href="https://bblockswp.com/blocks/button/" rel="nofollow ugc">Button</a>: Add multi-functional buttons like go to a link, open a popup with various content types, etc. </li> <li> <a href="https://bblockswp.com/blocks/button-group/" rel="nofollow ugc">Button Group</a>: Place two or more action buttons side by side. Useful for calls-to-action like “Learn More” and “Buy Now”. </li> <li> <a href="https://bblockswp.com/blocks/animated-text/" rel="nofollow ugc">Animated Text</a>: Make text stand out with typing effects, text shuffles, and other animated styles. </li> <li> <a href="https://bblockswp.com/blocks/icon-box/" rel="nofollow ugc">Icon Box</a>: Combine icons with titles and descriptions in customizable layouts. Choose from Font Awesome, Bootstrap, or custom icons. </li> <li> <a href="https://bblockswp.com/blocks/feature-boxes/" rel="nofollow ugc">Feature Boxes</a>: Highlight features or services using an icon/image, title, separator, and supporting text. </li> <li> <a href="https://bblockswp.com/blocks/info-box/" rel="nofollow ugc">Info Box</a>: Share additional information or tips inside a clean, styled content block. </li> <li> <a href="https://bblockswp.com/blocks/pricing-table/" rel="nofollow ugc">Pricing Table</a>: Build pricing plans with features, pricing, and call-to-action buttons, perfect for product or service pages. </li> <li> <a href="https://bblockswp.com/blocks/price-lists/" rel="nofollow ugc">Price Lists</a>: Display menu items or pricing options with images, titles, descriptions, and prices. </li> <li> <a href="https://bblockswp.com/blocks/posts/" rel="nofollow ugc">Posts</a>: Display your latest posts or custom post types in grid or masonry layouts with filtering, pagination, and excerpt controls. </li> <li> <a href="https://bblockswp.com/blocks/chart/" rel="nofollow ugc">Chart</a>: Visualize data using bar, line, or pie charts. Fully responsive and customizable for infographics or analytics. </li> <li> <a href="https://bblockswp.com/blocks/qr-code/" rel="nofollow ugc">QR Code</a>: Generate a QR code from any URL or text input. Useful for offline promotions and instant access links. </li> <li> <a href="https://bblockswp.com/blocks/mail-to/" rel="nofollow ugc">Mail To</a>: Add a one-click email action that opens the user’s mail app (Gmail, Outlook, Yahoo, etc.) prefilled with your address. </li> <li> <a href="https://bblockswp.com/blocks/social-share/" rel="nofollow ugc">Social Share</a>: Enable sharing of your content across social media platforms and messaging apps with styled buttons. </li> <li> <a href="https://bblockswp.com/blocks/star-rating/" rel="nofollow ugc">Star Rating</a>: Display customer reviews or feedback with an interactive star rating block. </li> <li> <a href="https://bblockswp.com/blocks/services/" rel="nofollow ugc">Services</a>: Present your service offerings in a structured layout with icon, title, and description. </li> <li> <a href="https://bblockswp.com/blocks/team-member/" rel="nofollow ugc">Team Members</a>: Introduce your team with member profiles including photo, name, title, bio, and social links. </li> <li> <a href="https://bblockswp.com/blocks/cards/" rel="nofollow ugc">Cards</a>: Create content cards that combine an image, heading, description, and footer, perfect for features or blog highlights. </li> <li> <a href="https://bblockswp.com/blocks/bblocks-navigation/" rel="nofollow ugc">bBlocks Navigation</a>: Add a custom navigation menu inside your page layout for a better user experience and in-page linking. </li> <li> <a href="https://bblockswp.com/blocks/facebook-page/" rel="nofollow ugc">Facebook Page</a>: Display your Facebook page feed in a styled block. </li> <li> <a href="https://bblockswp.com/blocks/facebook-embed/" rel="nofollow ugc">Facebook Embed</a>: Embed any Facebook post or video in your content. </li> <li> <a href="https://bblockswp.com/blocks/logo-slider/" rel="nofollow ugc">Logo Slider</a>: Create a responsive logo slider for your brand or partner logos. </li> <li> <a href="https://bblockswp.com/blocks/image-hotspot/" rel="nofollow ugc">Image Hotspot</a>: Add interactive hotspots to your images with custom tooltips and links. </li> <li> <a href="https://bblockswp.com/blocks/content-ticker/" rel="no

WordPress Plugin Directory

43.8K