cleantalk
Vulnerabilities and Security Researches

Blocksy Companion, CVE-2023-23898

CVE, Research URL

CVE-2023-23898

Home page URL

Security reports for Blocksy Companion

Application

Blocksy Companion

Published on
Apr 06, 2023
Research Description
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeThemes Blocksy Companion plugin <= 1.8.67 versions.
Affected versions
max 1.8.68.
Status
vulnerable
Previous vulnerability researches
Blocksy Companion (CVE-2022-4974) , Nov 15, 2024
Blocksy Companion (CVE-2025-9565) , Oct 11, 2025
Blocksy Companion (CVE-2025-12475) , Nov 10, 2025
Blocksy Companion (CVE-2023-1911) , Jun 07, 2024
Blocksy Companion (CVE-2024-4487) , Jun 07, 2024
New vulnerability
百度站长SEO合集(支持百度/神马/Bing/头条推送) (CVE-2025-62977) , Nov 11, 2025
WP jQuery Pager (CVE-2025-10575) , Nov 11, 2025
DELUCKS SEO (CVE-2025-49376) , Nov 11, 2025
B Carousel Block &#8211; Create stunning responsive carousels effortlessly (CVE-2025-12388) , Nov 11, 2025
Stock Snapshot for WooCommerce (CVE-2025-10167) , Nov 11, 2025