CVE-2026-12430 | creativethemeshq Blocksy Companion Plugin up to 2.1.45 on WordPress Setting cross site scripting

Inserito da Angelo Barbosa | Giu 19, 2026 | CVE

A vulnerability has been found in creativethemeshq Blocksy Companion Plugin up to 2.1.45 on WordPress and classified as problematic. Impacted is an unknown function of the component Setting Handler. Performing a manipulation results in cross site scripting.

This vulnerability was named CVE-2026-12430. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-12430 | creativethemeshq Blocksy Companion Plugin up to 2.1.45 on WordPress Setting cross site scripting

Post correlati

CVE-2023-51695 | WPEverest Everest Forms Plugin up to 2.0.4.1 on WordPress cross site scripting

CVE-2026-21836 | HCL DominoIQ 14.5.1 RAG Feature authorization (KB0130932)

CVE-2024-37945 | WPBits Addons for Elementor Page Builder Plugin up to 1.5 on WordPress cross site scripting

CVE-2024-6048 | Openfind MailGates/MailAudit Email Attachment os command injection