RSS   Vulnerabilities for 'Code snippets extended'   RSS

2022-05-17
 
CVE-2022-29435

CWE-352
 

 
Cross-Site Request Forgery (CSRF) vulnerability in Alexander Stokmann's Code Snippets Extended plugin <= 1.4.7 on WordPress allows an attacker to delete or to turn on/off snippets.

 
 
CVE-2022-29436

CWE-352
 

 
Persistent Cross-Site Scripting (XSS) vulnerability in Alexander Stokmann's Code Snippets Extended plugin <= 1.4.7 on WordPress via Cross-Site Request Forgery (vulnerable parameters &title, &snippet_code).

 


Copyright 2024, cxsecurity.com

 

Back to Top