3 matches found
CVE-2020-8417
creationtimestamp| type| source ---|---|--- 2020-02-09 21:56:23+00:00| published-proof-of-concept| https://t.me/antichat/7846 2020-02-09 22:16:20+00:00| published-proof-of-concept| https://t.me/thebugbountyhunter/3802 2024-03-13 13:46:38+00:00| published-proof-of-concept|...
200K WordPress Sites Vulnerable to Plugin Flaw
A high-severity vulnerability exists in a popular WordPress plugin, potentially opening up 200,000 websites to takeover. The WordPress plugin in question in Code Snippets, which allows users to run small chunks of PHP code on their websites. This can be used to extend the functionality of the...
CVE-2020-8417
CVE-2020-8417 affects the WordPress Code Snippets plugin (pre-2.14.0). Root cause: CSRF due to a missing Referer check on the import menu. Several connected sources describe the issue as CSRF, with some stating a risk of remote code execution; however, exploit details are not provided in the docu...