2.0.37

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-03	CVE-2024-35633	Unspecified vulnerability in Creativethemes Blocksy Companion Server-Side Request Forgery (SSRF) vulnerability in CreativeThemes Blocksy Companion.This issue affects Blocksy Companion: from n/a through 2.0.42. network low complexity creativethemes	4.9
2024-05-14	CVE-2024-4487	Cross-site Scripting vulnerability in Creativethemes Blocksy Companion The Blocksy Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG uploads in versions up to, and including, 2.0.45 due to insufficient input sanitization and output escaping. network low complexity creativethemes CWE-79	5.4