Browse all 8 CVE security advisories affecting codemstory. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Codemstory develops software development tools with a core focus on code collaboration and project management. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for their 8 recorded CVEs. The company has faced scrutiny for insufficient input validation and improper access controls in web interfaces. While no major public security incidents have been documented, their vulnerability history suggests a pattern of security gaps in authentication mechanisms and server-side request handling, requiring ongoing remediation efforts to maintain secure development environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-11943 | 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 <= 5.2.2 - Reflected Cross-Site Scripting via add_query_arg Function — 워드프레스 결제 심플페이 – 우커머스 결제 플러그인CWE-79 | 6.1 | Medium | 2024-12-07 |
| CVE-2024-11228 | 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 <= 5.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting pafw_instant_payment Shortcode — 워드프레스 결제 심플페이 – 우커머스 결제 플러그인CWE-79 | 6.4 | Medium | 2024-11-23 |
This page lists every published CVE security advisory associated with codemstory. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.