CVE Catalog

CVE-2026-11357

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

15th percentile — higher than 15% of all known CVEs

Summary

The Kadence Blocks — Page Builder Toolkit for Gutenberg Editor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to and including 3.7.5. This allows authenticated attackers with contributor-level access and above to extract the site's connected Kadence account license key, license owner email, and other sensitive data from the browser console.

Risk Assessment

Organizations may be at risk of sensitive information theft, potentially leading to unauthorized access to the Kadence account and other resources. Attackers with contributor-level access can easily access this data without server-side request manipulation.

Recommendation

It is recommended to update the Kadence Blocks plugin to the latest version to mitigate this vulnerability. Additionally, consider restricting editor access for users at the contributor level to minimize the risk of sensitive information exposure.

Original NVD description (English source)

The Kadence Blocks — Page Builder Toolkit for Gutenberg Editor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.7.5 via the editor_assets_variables. This makes it possible for authenticated attackers, with contributor-level access and above, to extract the site's connected Kadence account license key, license owner email, api_key, api_email, and license domain from the browser console by inspecting window.kadence_blocks_params.proData. Exploitation requires only that an administrator has previously connected a valid Kadence license; the full credential bundle is then readable by any Contributor-level user from the block editor client context without any server-side request manipulation.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS