CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

215 matches found

ATTACKERKB•added 2022/05/18 1:17 p.m.•2 views

CVE-2022-25617

Reflected Cross-Site Scripting XSS vulnerability in Code Snippets plugin = 2.14.3 at WordPress via vulnerable parameter...

6.1CVSS6.1AI score0.00345EPSS

Exploits0References3Affected Software1

CNNVD•added 2022/05/18 12:0 a.m.•2 views

WordPress plugin Code Snippets 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Code Snippets plugin cross-site scripting vulnerability, which originates from the &orderby paramet...

6.1CVSS5.3AI score0.00345EPSS

Exploits0References4

WPVulnDB•added 2022/05/18 12:0 a.m.•16 views

Code Snippets < 2.14.4 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape a parameter before outputting it back in a page, leading to a Reflected Cross-Site Scripting...

6.1CVSS1.3AI score0.00345EPSS

Exploits0Affected Software1

Patchstack•added 2022/05/18 12:0 a.m.•30 views

WordPress Code Snippets plugin <= 2.14.3 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by BEE-K Patchstack in WordPress Code Snippets plugin versions = 2.14.3. Solution Update the WordPress Code Snippets plugin to the latest available version at least 2.14.4...

6.1CVSS2.1AI score0.00345EPSS

Exploits0References2Affected Software1

OSV•added 2022/05/17 8:15 p.m.•2 views

CVE-2022-29436

Persistent Cross-Site Scripting XSS vulnerability in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress via Cross-Site Request Forgery vulnerable parameters &title, &snippetcode...

6.1CVSS5.8AI score

Exploits0References2

NVD•added 2022/05/17 8:15 p.m.•8 views

CVE-2022-29436

6.1CVSS0.00099EPSS

Exploits0References2

OSV•added 2022/05/17 8:15 p.m.•1 views

CVE-2022-29435

Cross-Site Request Forgery CSRF vulnerability in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress allows an attacker to delete or to turn on/off snippets...

5.4CVSS5.8AI score

Exploits0References2

NVD•added 2022/05/17 8:15 p.m.•8 views

CVE-2022-29435

Cross-Site Request Forgery CSRF vulnerability in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress allows an attacker to delete or to turn on/off snippets...

5.8CVSS0.00164EPSS

Exploits0References2

Prion•added 2022/05/17 8:15 p.m.•11 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress allows an attacker to delete or to turn on/off snippets...

5.8CVSS5.6AI score0.00164EPSS

Exploits0References2Affected Software1

CVE•added 2022/05/17 7:54 p.m.•82 views

CVE-2022-29435

CVE-2022-29435 affects the WordPress plugin “Code Snippets Extended” (

5.8CVSS5.6AI score0.00164EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2022/05/17 7:54 p.m.•6 views

CVE-2022-29435 WordPress Code Snippets Extended plugin <= 1.4.7 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress allows an attacker to delete or to turn on/off snippets...

5.4CVSS5.6AI score0.00164EPSS

Exploits0References2

Cvelist•added 2022/05/17 7:54 p.m.•11 views

CVE-2022-29435 WordPress Code Snippets Extended plugin <= 1.4.7 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress allows an attacker to delete or to turn on/off snippets...

5.4CVSS5.9AI score0.00164EPSS

Exploits0References2

CVE•added 2022/05/17 7:51 p.m.•88 views

CVE-2022-29436

The CVE-2022-29436 entry covers a CSRF-based Persistent XSS in the WordPress plugin Code Snippets Extended (

6.1CVSS5.5AI score0.00099EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/05/17 7:51 p.m.•12 views

CVE-2022-29436 WordPress Code Snippets Extended plugin <= 1.4.7 - Cross-Site Request Forgery (CSRF) vulnerability leading to Persistent Cross-Site Scripting (XSS)

4.7CVSS6.4AI score0.00099EPSS

Exploits0References2

OSV•added 2022/05/17 7:15 p.m.•2 views

CVE-2022-29429

Remote Code Execution RCE in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress via Cross-Site Request Forgery...

8.8CVSS5.9AI score0.00677EPSS

Exploits0References2

NVD•added 2022/05/17 7:15 p.m.•8 views

CVE-2022-29429

Remote Code Execution RCE in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress via Cross-Site Request Forgery...

8.8CVSS0.00677EPSS

Exploits0References2

Prion•added 2022/05/17 7:15 p.m.•11 views

Cross site request forgery (csrf)

Remote Code Execution RCE in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress via Cross-Site Request Forgery...

6.8CVSS8.9AI score0.00677EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2022/05/17 6:22 p.m.•4 views

CVE-2022-29429 WordPress Code Snippets Extended plugin <= 1.4.7 - Cross-Site Request Forgery (CSRF) leading to Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress via Cross-Site Request Forgery...

8.8CVSS9AI score0.00677EPSS

Exploits0References2

CVE•added 2022/05/17 6:22 p.m.•76 views

CVE-2022-29429

CVE-2022-29429 affects the WordPress Code Snippets Extended plugin (versions

8.8CVSS9AI score0.00677EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2022/05/17 2:52 p.m.•2 views

CVE-2022-29435

Cross-Site Request Forgery CSRF vulnerability in Alexander Stokmann's Code Snippets Extended plugin = 1.4.7 on WordPress allows an attacker to delete or to turn on/off snippets...

5.8CVSS5.7AI score0.00164EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by