Log out
Get PRO

Latest

Input validation vulnerability in Woody code snippets – Insert Header Footer Code, AdSense Ads 2.4.10

  • Severity: medium-risk
  • Status: Fixed
  • Publication: June 6, 2024

The Woody code snippets plugin for WordPress, called “Insert Header Footer Code, AdSense Ads,” has a security flaw that allows hackers to insert harmful code on web pages. This can happen when the plugin’s settings are changed by someone with administrator access. The issue affects all versions up to 2.4.10 and is caused by not properly filtering and escaping input. This vulnerability only affects websites with multiple sub-sites or those with certain security settings disabled.

Detected in:

Woody code snippets – Insert Header Footer Code, AdSense Ads fixed vulnerable versions: >= * <= 2.4.10

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.