Blocksy Companion

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

The Blocksy Companion plugin for WordPress is vulnerable to authenticated arbitrary file upload in all versions up to, and including, 2.1.19. This is due to insufficient file type validation detecting SVG files, allowing double extension files to bypass sanitization while being accepted as a valid SVG file. This makes it possible for authenticated attackers, with author level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

AI Analysis

Authenticated arbitrary file upload vulnerability in Blocksy Companion plugin for WordPress due to insufficient file type validation, allowing remote code execution

Basic Information

ID CVE-2025-12846

Source Wordfence

Published Nov 11, 2025 at 11:03

Affected Product

Vendor creativethemeshq

Product Blocksy Companion

Version *

Affected Versions creativethemeshq Blocksy Companion *

CWE Classification

CWE-434

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Creative Theme HQ

Product Blocksy Companion

Version 2.1.19 and below

References

{
    "lastseen": "",
    "description": "The Blocksy Companion plugin for WordPress is vulnerable to authenticated arbitrary file upload in all versions up to, and including, 2.1.19. This is due to insufficient file type validation detecting SVG files, allowing double extension files to bypass sanitization while being accepted as a valid SVG file. This makes it possible for authenticated attackers, with author level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.",
    "published": "2025-11-11T11:03:46.642Z",
    "modified": "2025-11-11T11:03:46.642Z",
    "type": "cve",
    "title": "Blocksy Companion <= 2.1.19 - Authenticated (Author+) Arbitrary File Upload via SVG Upload Bypass",
    "source": "Wordfence",
    "references": "https://www.wordfence.com/threat-intel/vulnerabilities/id/f8615422-5db7-495d-9956-7d6f658f42bf?source=cve\nhttps://plugins.trac.wordpress.org/changeset/3391933/blocksy-companion/trunk/framework/features/svg.php",
    "id": "CVE-2025-12846",
    "bulletinFamily": "",
    "cwe": [
        "CWE-434"
    ],
    "cvelist": null,
    "sourceData": "creativethemeshq Blocksy Companion *",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Blocksy Companion",
    "version": "*",
    "vendor": "creativethemeshq",
    "ai_description": "Authenticated arbitrary file upload vulnerability in Blocksy Companion plugin for WordPress due to insufficient file type validation, allowing remote code execution",
    "ai_severity": "High",
    "ai_vendor": "Creative Theme HQ",
    "ai_product": "Blocksy Companion",
    "ai_version": "2.1.19 and below",
    "ai_score": 8.8
}

Blocksy Companion <= 2.1.19 - Authenticated (Author+) Arbitrary File Upload via SVG Upload Bypass_CVE-2025-12846