Lucene search
Chloe ChamberlandWPVDB-ID:0DB4C0E7-7556-4E7D-B4B6-54F333EF5F11HistoryJan 29, 2020 - 12:00 a.m.
Code Snippets < 2.14.0 - CSRF to RCE
2020-01-2900:00:00
Chloe Chamberland
wpscan.com
5
0.001 Low
EPSS
Percentile
46.5%
This “flaw allowed anybody to forge a request on behalf of an administrator and inject executable code on a vulnerable site.”
PoC
| CPE | Name | Operator | Version |
|---|---|---|---|
| code-snippets | lt | 2.14.0 |
Related
threatpost
threatpost
200K WordPress Sites Vulnerable to Plugin Flaw
2020-01-30 21:49:37
githubexploit
githubexploit
Exploit for Cross-Site Request Forgery (CSRF) in Codesnippets Code Snippets
2021-02-19 20:37:23
openvas
openvas
WordPress Code Snippets Plugin < 2.14.0 CSRF Vulnerability
2022-07-07 00:00:00
patchstack
patchstack
nvd
nvd
CVE-2020-8417
2020-01-28 21:15:11
checkpoint_advisories
checkpoint_advisories
WordPress Code Snippets Plugin Cross Site Request Forgery (CVE-2020-8417)
2020-02-03 00:00:00
prion
prion
Cross site request forgery (csrf)
2020-01-28 21:15:00
osv
osv
CVE-2020-8417
2020-01-28 21:15:11
cvelist
cvelist
CVE-2020-8417
2020-01-28 20:19:25
cve
cve
CVE-2020-8417
2020-01-28 21:15:11
wpexploit
wpexploit
Code Snippets < 2.14.0 - CSRF to RCE
2020-01-29 00:00:00