PLUGIN SECURITY
Is Gutenberg safe?
Known vulnerabilities, PHP compatibility and safer alternatives for the Gutenberg WordPress plugin — checked against WP Clinic's local security database.
Plugin details
- Slug:
gutenberg
Known vulnerabilities
- Gutenberg [gutenberg] < 12.7.2
- CVE-2022-33994 — Gutenberg [gutenberg] <= 17.3.0 (unfixed) (XSS) · Low
- Gutenberg [gutenberg] < 14.3.1
- Gutenberg [gutenberg] < 14.3.1
- Gutenberg [gutenberg] < 12.7.2
+ 7 more known vulnerabilities
- Gutenberg [gutenberg] < 14.3.1
- CVE-2023-38000 — Gutenberg [gutenberg] < 16.8.1 (XSS) · Medium
- Gutenberg [gutenberg] < 16.8.1
- Gutenberg [gutenberg] >= 12.9.0 - <= 18.0.0
- Gutenberg [gutenberg] >= 12.9.0 - <= 18.0.0
- CVE-2024-37492 — Gutenberg [gutenberg] < 18.6.1 (XSS) · Medium
- CVE-2025-64354 — Gutenberg [gutenberg] < 21.9.0 (XSS) · Medium
Vulnerabilities are matched against the exact installed version when it's known. Always keep the plugin updated to the latest release.
Check your own WordPress site
Run a free passive scan now, or create a free account and install the WP Clinic plugin for a deep scan of your whole hosting account and AI-assisted repair.