VYPR

Code::Blocks

by codeblocks

CVEs (5)

  • CVE-2020-37040HigJan 30, 2026
    risk 0.55cvss 8.4epss 0.00

    Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field…

  • CVE-2020-37038HigJan 30, 2026
    risk 0.49cvss 7.5epss 0.00

    Code Blocks 20.03 contains a denial of service vulnerability that allows attackers to crash the application by manipulating input in the FSymbols search field. Attackers can paste a large payload of 5000 repeated characters into the search field to trigger an application crash.

  • CVE-2020-37121MedFeb 5, 2026
    risk 0.36cvss 5.5epss 0.00

    CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to…

  • CVE-2020-10814MedApr 8, 2020
    risk 0.36cvss 5.5epss 0.02

    A buffer overflow vulnerability in Code::Blocks 17.12 allows an attacker to execute arbitrary code via a crafted project file.

  • CVE-2025-14158MedDec 12, 2025
    risk 0.28cvss 4.3epss 0.00

    The Coding Blocks plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.0. This is due to missing nonce validation on the settings update functionality. This makes it possible for unauthenticated attackers to update plugin…