Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
code::blocks vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-10814
A buffer overflow vulnerability in Code::Blocks 17.12 allows an malicious user to execute arbitrary code via a crafted project file.
Codeblocks Code\\ \\
383
VMScore
CVE-2021-30074
docsify 4.12.1 is affected by Cross Site Scripting (XSS) because the search component does not appropriately encode Code Blocks and mishandles the " character.
Docsifyjs Docsify 4.12.1
384
VMScore
CVE-2022-23647
Prism is a syntax highlighting library. Starting with version 1.14.0 and prior to version 1.27.0, Prism's command line plugin can be used by malicious users to achieve a cross-site scripting attack. The command line plugin did not properly escape its output, leading to the i...
Prismjs Prism
436
VMScore
CVE-2020-26237
Highlight.js is a syntax highlighter written in JavaScript. Highlight.js versions prior to 9.18.2 and 10.1.2 are vulnerable to Prototype Pollution. A malicious HTML code block can be crafted that will result in prototype pollution of the base object's prototype during highli...
Highlightjs Highlight.js
Debian Debian Linux 9.0
Oracle Mysql Enterprise Monitor
NA
CVE-2022-36036
mdx-mermaid provides plug and play access to Mermaid in MDX. There is a potential for an arbitrary javascript injection in versions less than 1.3.0 and 2.0.0-rc1. Modify any mermaid code blocks with arbitrary code and it will execute when the component is loaded by MDXjs. This vu...
Mdx-mermaid Project Mdx-mermaid
Mdx-mermaid Project Mdx-mermaid 2.0.0
605
VMScore
CVE-2019-20374
A mutation cross-site scripting (XSS) issue in Typora up to and including 0.9.9.31.2 on macOS and up to and including 0.9.81 on Linux leads to Remote Code Execution through Mermaid code blocks. To exploit this vulnerability, one must open a file in Typora. The XSS vulnerability i...
Typora Typora
NA
CVE-2022-3401
The Bricks theme for WordPress is vulnerable to remote code execution due to the theme allowing site editors to include executable code blocks in website content in versions 1.2 to 1.5.3. This, combined with the missing authorization vulnerability (CVE-2022-3400), makes it possib...
Bricksbuilder Bricks
231
VMScore
CVE-2020-15138
Prism is vulnerable to Cross-Site Scripting. The easing preview of the Previewers plugin has an XSS vulnerability that allows malicious users to execute arbitrary code in Safari and Internet Explorer. This impacts all Safari and Internet Explorer users of Prism >=v1.1.0 that u...
Prismjs Previewers
312
VMScore
CVE-2021-21383
Wiki.js an open-source wiki app built on Node.js. Wiki.js before version 2.5.191 is vulnerable to stored cross-site scripting through mustache expressions in code blocks. This vulnerability exists due to mustache expressions being parsed by Vue during content injection even thoug...
Requarks Wiki.js
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started