Mainwp Code Snippets Extension vulnerabilities
2 known vulnerabilities affecting mainwp/code_snippets_extension.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-23645P2CRITICALCVSS 9.9fixed in 4.0.32024-05-17
CVE-2023-23645 [CRITICAL] CWE-94 CVE-2023-23645: Improper Control of Generation of Code ('Code Injection') vulnerability in MainWP MainWP Code Snippe
Improper Control of Generation of Code ('Code Injection') vulnerability in MainWP MainWP Code Snippets Extension allows Code Injection.This issue affects MainWP Code Snippets Extension: from n/a through 4.0.2.
nvd
CVE-2023-23650P4MEDIUMCVSS 5.4fixed in 4.0.32023-03-23
CVE-2023-23650 [MEDIUM] CWE-79 CVE-2023-23650: Auth. (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in MainWP MainWP Code Snippets E
Auth. (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in MainWP MainWP Code Snippets Extension plugin <= 4.0.2 versions.
nvd