Pricing
Case studies
Login
Start trial
Blocksy
CreativeThemes
Developer
2.1.48
Latest version
300,000
Downloads
19 hours ago
Last updated
WordPress Theme
Active VDP
Report vulnerability
Vulnerabilities
Security Policy
Security Contributors
Vulnerability history
0 present
14 patched
0 Mitigation rules
Authenticated (Contributor+) PHP Object Injection vulnerability
<= 2.1.41
08/06/2026
Authenticated (Contributor+) Stored Cross-Site Scripting via `blocksy_meta` Fields vulnerability
<= 2.1.30
02/03/2026
Cross Site Scripting (XSS) Vulnerability
<= 2.1.6
14/08/2025
Broken Access Control Vulnerability
<= 2.0.97
07/05/2025
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 2.0.77
04/12/2024
Cross Site Request Forgery (CSRF) vulnerability
<= 2.0.22
01/07/2024
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 2.0.50
05/06/2024
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 2.0.46
21/05/2024
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 2.0.42
05/05/2024
Authenticated (Contributor+) Stored Cross-Site Scripting via About Me block vulnerability
<= 2.0.39
25/04/2024
Cross Site Scripting (XSS) vulnerability
<= 2.0.33
23/04/2024
Cross Site Request Forgery (CSRF) vulnerability
<= 2.0.22
10/04/2024
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 2.0.26
11/03/2024
Cross Site Scripting (XSS) vulnerability
<= 2.0.19
05/02/2024