CVE-2026-57315

HIGH8.5JSON export Create alert

Description

Contributor Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.45 versions.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected products

Creative Themes / Blocksy Companion Pron/a – 2.1.45

References

MISChttps://patchstack.com/database/wordpress/plugin/blocksy-companion-pro/vulnerability/wordpress-blocksy-companion-pro-plugin-2-1-45-remote-code-execution-rce-vulnerability?_s_id=cve