Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
code::blocks vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-10814
A buffer overflow vulnerability in Code::Blocks 17.12 allows an malicious user to execute arbitrary code via a crafted project file.
Codeblocks Code\\ \\
6.1
CVSSv3
CVE-2021-30074
docsify 4.12.1 is affected by Cross Site Scripting (XSS) because the search component does not appropriately encode Code Blocks and mishandles the " character.
Docsifyjs Docsify 4.12.1
6.1
CVSSv3
CVE-2022-23647
Prism is a syntax highlighting library. Starting with version 1.14.0 and prior to version 1.27.0, Prism's command line plugin can be used by malicious users to achieve a cross-site scripting attack. The command line plugin did not properly escape its output, leading to the i...
Prismjs Prism
8.7
CVSSv3
CVE-2020-26237
Highlight.js is a syntax highlighter written in JavaScript. Highlight.js versions prior to 9.18.2 and 10.1.2 are vulnerable to Prototype Pollution. A malicious HTML code block can be crafted that will result in prototype pollution of the base object's prototype during highli...
Highlightjs Highlight.js
Debian Debian Linux 9.0
Oracle Mysql Enterprise Monitor
7.8
CVSSv3
CVE-2022-36036
mdx-mermaid provides plug and play access to Mermaid in MDX. There is a potential for an arbitrary javascript injection in versions less than 1.3.0 and 2.0.0-rc1. Modify any mermaid code blocks with arbitrary code and it will execute when the component is loaded by MDXjs. This vu...
Mdx-mermaid Project Mdx-mermaid
Mdx-mermaid Project Mdx-mermaid 2.0.0
9.6
CVSSv3
CVE-2019-20374
A mutation cross-site scripting (XSS) issue in Typora up to and including 0.9.9.31.2 on macOS and up to and including 0.9.81 on Linux leads to Remote Code Execution through Mermaid code blocks. To exploit this vulnerability, one must open a file in Typora. The XSS vulnerability i...
Typora Typora
8.8
CVSSv3
CVE-2022-3401
The Bricks theme for WordPress is vulnerable to remote code execution due to the theme allowing site editors to include executable code blocks in website content in versions 1.2 to 1.5.3. This, combined with the missing authorization vulnerability (CVE-2022-3400), makes it possib...
Bricksbuilder Bricks
7.5
CVSSv3
CVE-2020-15138
Prism is vulnerable to Cross-Site Scripting. The easing preview of the Previewers plugin has an XSS vulnerability that allows malicious users to execute arbitrary code in Safari and Internet Explorer. This impacts all Safari and Internet Explorer users of Prism >=v1.1.0 that u...
Prismjs Previewers
5.4
CVSSv3
CVE-2021-21383
Wiki.js an open-source wiki app built on Node.js. Wiki.js before version 2.5.191 is vulnerable to stored cross-site scripting through mustache expressions in code blocks. This vulnerability exists due to mustache expressions being parsed by Vue during content injection even thoug...
Requarks Wiki.js
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started