Vulnerabilities (CVE)

Filtered by vendor Codesnippets Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-25617 1 Codesnippets 1 Code Snippets 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
Reflected Cross-Site Scripting (XSS) vulnerability in Code Snippets plugin <= 2.14.3 at WordPress via &orderby vulnerable parameter.
CVE-2021-25008 1 Codesnippets 1 Code Snippets 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
The Code Snippets WordPress plugin before 2.14.3 does not escape the snippets-safe-mode parameter before outputting it back in attributes, leading to a Reflected Cross-Site Scripting issue
CVE-2020-8417 1 Codesnippets 1 Code Snippets 2024-02-28 6.8 MEDIUM 8.8 HIGH
The Code Snippets plugin before 2.14.0 for WordPress allows CSRF because of the lack of a Referer check on the import menu.