Exposição de Blocksy Companion

WordPress plugins

15

score de exposição

13.576

sites usam

0

em exploração

0

críticos

CVEs

11 resultados

CVE-2025-12846HIGHBlocksy Companion <= 2.1.19 - Authenticated (Author+) Arbitrary File Upload via SVG Upload BypassEPSS 0.6%CVE-2023-1911MEDIUMBlocksy Companion < 1.8.82 - Subscriber+ Draft Post AccessEPSS 0.5%CVE-2024-4487MEDIUMBlocksy Companion <= 2.0.45 - Authenticated (Contributor+) Stored Cross-Site Scripting via SVG UploadsEPSS 0.4%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2024-2392MEDIUMBlocksy Companion <= 2.0.31 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2023-23898MEDIUMWordPress Blocksy Companion Plugin <= 1.8.67 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2024-35633MEDIUMWordPress Blocksy Companion plugin <= 2.0.42 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2025-9565MEDIUMBlocksy Companion <= 2.1.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via blocksy_newsletter_subscribe ShortcodeEPSS 0.2%CVE-2024-31932MEDIUMWordPress Blocksy Companion plugin <= 2.0.28 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-12430MEDIUMBlocksy Companion <= 2.1.45 - Authenticated (Editor+) Stored Cross-Site Scripting via 'product_description' ParameterEPSS 0.2%CVE-2025-12475MEDIUMBlocksy Companion <= 2.1.14 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.2%

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →