Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

cscode — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting cscode. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cscode is a software development platform focused on providing code collaboration and version control solutions for development teams. Historically, the platform has been susceptible to multiple vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation vulnerabilities. These issues have allowed attackers to execute arbitrary code, manipulate user sessions, and gain unauthorized access to sensitive data or systems. The six CVEs recorded for cscode highlight persistent security challenges in its web interface and API components, particularly related to input validation and access control. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests ongoing attention to secure coding practices is necessary for maintaining robust security posture.

Top products by cscode: EleForms – All In One Form Integration including DB for Elementor WooCommerce Estimate and Quote WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily
CVE IDTitleCVSSSeverityPublished
CVE-2025-50008 WordPress WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily plugin <= 1.2.4.5 - Broken Access Control Vulnerability — WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easilyCWE-862 5.4 Medium2025-06-20
CVE-2025-32514 WordPress WooCommerce Estimate and Quote plugin <= 1.0.2.5 - Reflected Cross Site Scripting (XSS) vulnerability — WooCommerce Estimate and QuoteCWE-79 7.1 High2025-04-17
CVE-2024-6628 EleForms – All In One Form Integration including DB for Elementor <= 2.9.9.9 - Cross-Site Request Forgery — EleForms – All In One Form Integration including DB for ElementorCWE-352 4.3 Medium2024-11-16
CVE-2024-6626 EleForms – All In One Form Integration including DB for Elementor <= 2.9.9.9 - Missing Authorization — EleForms – All In One Form Integration including DB for ElementorCWE-862 5.3 Medium2024-11-06
CVE-2024-2082 EleForms – All In One Form Integration including DB for Elementor <= 2.9.9.7 - Unauthenticated Stored Cross-Site Scripting — EleForms – All In One Form Integration including DB for ElementorCWE-79 7.2 High2024-05-02
CVE-2024-2043 EleForms – All In One Form Integration including DB for Elementor <= 2.9.9.7 - Missing Authorization to Sensitive Information Exposure — EleForms – All In One Form Integration including DB for ElementorCWE-862 5.3 Medium2024-05-02

This page lists every published CVE security advisory associated with cscode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.