CodeKit – Custom Codes Editor

Vulnerabilities 5Slug custom-codesLatest version 2.5.2WordPress.org →

Minimum safe version

2.3.6

Update to 2.3.6 or later to address 5 fixable vulnerabilities

Latest available2.5.2
Medium 6.3
2024-10-16< 2.3

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE
N/A
2023-07-18< 2.3.6

WordPress CodeKit – Custom Codes Editor Plugin < 2.3.6 is vulnerable to Cross Site Scripting (XSS)

PatchstackCVE
N/A
2022-03-04< 2.3

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence
N/A
2022-02-28< 2.3

WordPress CodeKit – Custom Codes Editor plugin <= 2.2.9 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack
N/A
2022-02-28< 2.3

WordPress CodeKit – Custom Codes Editor plugin <= 2.2.9 - Sensitive Information Disclosure vulnerability

Patchstack