Filtered by vendor Codesnippets
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-25617 | 1 Codesnippets | 1 Code Snippets | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
Reflected Cross-Site Scripting (XSS) vulnerability in Code Snippets plugin <= 2.14.3 at WordPress via &orderby vulnerable parameter. | |||||
CVE-2021-25008 | 1 Codesnippets | 1 Code Snippets | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
The Code Snippets WordPress plugin before 2.14.3 does not escape the snippets-safe-mode parameter before outputting it back in attributes, leading to a Reflected Cross-Site Scripting issue | |||||
CVE-2020-8417 | 1 Codesnippets | 1 Code Snippets | 2024-02-28 | 6.8 MEDIUM | 8.8 HIGH |
The Code Snippets plugin before 2.14.0 for WordPress allows CSRF because of the lack of a Referer check on the import menu. |