PT-2026-55010 · WordPress · Blocksy Companion Pro

Nguyen Ba Khanh

·

Published

2026-07-02

·

Updated

2026-07-02

·

CVE-2026-57624

CVSS v3.1

10

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Blocksy Companion Pro versions prior to 2.1.47
Description An unauthenticated remote code execution flaw allows an attacker to execute arbitrary code on the site without requiring login credentials.
Recommendations Update to a version newer than 2.1.46.

Fix

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-57624

Affected Products

Blocksy Companion Pro