High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-10-03	CVE-2023-39989	Unspecified vulnerability in Draftpress Header Footer Code Manager Cross-Site Request Forgery (CSRF) vulnerability in 99robots Header Footer Code Manager plugin <= 1.1.34 versions. network low complexity draftpress	8.8
2021-11-08	CVE-2021-24791	SQL Injection vulnerability in Draftpress Header Footer Code Manager The Header Footer Code Manager WordPress plugin before 1.1.14 does not validate and escape the "orderby" and "order" request parameters before using them in a SQL statement when viewing the Snippets admin dashboard, leading to SQL injections network low complexity draftpress CWE-89	7.2