Browse all 8 CVE security advisories affecting codemstory. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Codemstory develops software development tools with a core focus on code collaboration and project management. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for their 8 recorded CVEs. The company has faced scrutiny for insufficient input validation and improper access controls in web interfaces. While no major public security incidents have been documented, their vulnerability history suggests a pattern of security gaps in authentication mechanisms and server-side request handling, requiring ongoing remediation efforts to maintain secure development environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-47661 | WordPress 워드프레스 결제 심플페이 plugin <= 5.2.11 - Cross Site Request Forgery (CSRF) Vulnerability — 워드프레스 결제 심플페이CWE-352 | 5.4 | Medium | 2025-05-07 |
| CVE-2024-56281 | WordPress 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 plugin <= 5.2.0 - Local File Inclusion vulnerability — 워드프레스 결제 심플페이CWE-98 | 7.5 | High | 2025-01-07 |
This page lists every published CVE security advisory associated with codemstory. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.