Exposure of Blocksy
WordPress themes17
exposure score
23,875
sites use
0
exploited
0
critical
CVEs
14 resultsCVE-2026-8365HIGHBlocksy <= 2.1.41 - Authenticated (Contributor+) PHP Object Injection via Deserialization of Untrusted Data via 'blocksy_meta' REST API FieldEPSS 0.8%CVE-2024-3747MEDIUMBlocksy <= 2.0.39 - Authenticated (Contributor+) Stored Cross-Site Scripting via About Me blockEPSS 0.4%CVE-2025-47465MEDIUMWordPress Blocksy theme <= 2.0.97 - Broken Access Control VulnerabilityEPSS 0.4%CVE-2024-4158MEDIUMBlocksy <= 2.0.42 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-32961MEDIUMWordPress Blocksy theme <= 2.0.33 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-24871MEDIUMWordPress Blocksy theme <= 2.0.19 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-1767MEDIUMBlocksy <= 2.0.26 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-5439MEDIUMBlocksy <= 2.0.50 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-4943MEDIUMBlocksy <= 2.0.46 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-11420MEDIUMBlocksy <= 2.0.77 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.2%CVE-2024-31382MEDIUMWordPress Blocksy theme <= 2.0.22 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-2583MEDIUMBlocksy <= 2.1.30 - Authenticated (Contributor+) Stored Cross-Site Scripting via `blocksy_meta` FieldsEPSS 0.2%CVE-2024-37469MEDIUMWordPress Blocksy theme <= 1.9.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-55713MEDIUMWordPress Blocksy Theme <= 2.1.6 - Cross Site Scripting (XSS) VulnerabilityEPSS 0.2%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →