CVE-2024-31382
WordPress Blocksy theme <= 2.0.22 - Cross Site Request Forgery (CSRF) vulnerabilityCross-Site Request Forgery (CSRF) vulnerability in Creative Themes HQ Blocksy.This issue affects Blocksy: from n/a through 2.0.22.
We have discovered 9,311 live websites that are affected by CVE-2024-31382.
Affected Software
| Product |  Blocksy |
| Category | Wordpress Themes |
| Vulnerable Domains | 9,311 live websites (19.65% of Blocksy install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 208 versions ( 75.36% of all versions) |
Common Weakness Enumeration
CWE-352 Cross-Site Request Forgery (CSRF)Details
- Published - Apr 15, 2024
- Updated - Aug 8, 2024
Credits
- Dhabaleshwar Das (Patchstack Alliance) (finder)
CWE
CVE References
CWE References
CVE-2024-31382 usage by Country
 United States | 3,746 websites |
 Germany | 1,030 websites |
 France | 475 websites |
 Denmark | 351 websites |
 Poland | 339 websites |
 Netherlands | 327 websites |
 Cyprus | 323 websites |
 Italy | 235 websites |
 GB | 197 websites |
 Russia | 189 websites |
CVE-2024-31382 usage by TLD
| .com | 3,374 websites |
| .info | 482 websites |
| .de | 377 websites |
| .nl | 344 websites |
| .pl | 313 websites |
| .com.br | 300 websites |
| .org | 299 websites |
| .dk | 279 websites |
| .it | 229 websites |
| .net | 203 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-31382
Top websites that are affected by CVE-2024-31382. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| **********.nl | Netherlands | **,*** | |
| ******.net | United States | **,*** | |
| *********.org |  Spain | **,*** | |
| *****.us | Germany | **,*** | |
| ******.dk | Denmark | ***,*** | |
| ****.********.edu | United States | ***,*** | |
| ********.me | United States | ***,*** | |
| *********.com | Germany | ***,*** | |
| ******.**.za | United States | ***,*** | |
| **.pl | Poland | ***,*** |
FAQ
CVE-2024-31382 is Cross-Site Request Forgery (CSRF) in Blocksy
A total of 9,311 websites have been identified as vulnerable to CVE-2024-31382, discovered through global website indexing conducted by WebTechSurvey.
Blocksy is susceptible to CVE-2024-31382 vulnerability.
Blocksy versions before, and including, 2.0.22 are vulnerable to CVE-2024-31382.