Browse all 6 CVE security advisories affecting codesupplyco. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Codesupplyco develops WordPress themes and plugins for website customization, with six CVEs recorded to date. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls. While no major public security incidents have been documented, their CVE history indicates a pattern of security gaps in user-facing components. The company has addressed vulnerabilities through patches, but the recurrence of similar issues suggests ongoing challenges in secure coding practices. Their position in the WordPress ecosystem makes security updates critical for preventing potential compromises across numerous websites.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-4421 | Advanced Popups <= 1.1.1 - Cross-Site Request Forgery Bypass — Advanced PopupsCWE-352 | 4.3 | Medium | 2023-07-12 |
This page lists every published CVE security advisory associated with codesupplyco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.