Aggregates CVE and security vulnerability intelligence across all codebard-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk cross-site scripting and vendor risk csrf, with potential vendor impact session compromise across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-22757 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CodeBard CodeBard Help Desk codebard-help-desk allows Stored XSS.This issue affects CodeBard Help Desk: from n/a through <= 1.1.2. | [email protected] | 6.5 | 0.24% | 2025-01-31 | 2026-06-17 |
| CVE-2025-22760 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CodeBard CodeBard Help Desk codebard-help-desk allows Reflected XSS.This issue affects CodeBard Help Desk: from n/a through <= 1.1.2. | [email protected] | 7.1 | 0.27% | 2025-01-15 | 2026-06-17 |
| CVE-2024-56222 | Cross-Site Request Forgery (CSRF) vulnerability in CodeBard CodeBard Help Desk codebard-help-desk allows Cross Site Request Forgery.This issue affects CodeBard Help Desk: from n/a through <= 1.1.1. | [email protected] | 5.4 | 0.16% | 2024-12-31 | 2026-06-17 |
| CVE-2024-34807 | Cross-Site Request Forgery (CSRF) vulnerability in CodeBard Fast Custom Social Share by CodeBard fast-custom-social-share-by-codebard.This issue affects Fast Custom Social Share by CodeBard: from n/a through <= 1.1.2. | [email protected] | 4.3 | 0.18% | 2024-05-17 | 2026-06-17 |
| CVE-2024-33928 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CodeBard CodeBard's Patron Button and Widgets for Patreon allows Reflected XSS.This issue affects CodeBard's Patron Button and Widgets for Patreon: from n/a through 2.2.0. | [email protected] | 7.1 | 0.33% | 2024-05-03 | 2026-06-17 |
| CVE-2023-48329 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CodeBard Fast Custom Social Share by CodeBard allows Stored XSS.This issue affects Fast Custom Social Share by CodeBard: from n/a through 1.1.1. | [email protected] | 5.9 | 0.39% | 2023-11-30 | 2026-06-17 |
| CVE-2023-47765 | Cross-Site Request Forgery (CSRF) vulnerability in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin <= 2.1.9 versions. | [email protected] | 4.3 | 0.26% | 2023-11-22 | 2026-06-17 |
| CVE-2023-47524 | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability (requires PHP 8.x) in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin <= 2.1.9 versions. | [email protected] | 5.8 | 0.36% | 2023-11-14 | 2026-06-17 |
| CVE-2023-30491 | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin <= 2.1.8 versions. | [email protected] | 7.1 | 0.33% | 2023-08-05 | 2026-06-17 |