Authenticated (Contributor+) Stored CrossSite Scripting via Post Meta Description and Canonical URL vulnerability
19 May, 2025
Authenticated (Contributor+) Stored CrossSite Scripting via Shortcode vulnerability
29 April, 2024
Authenticated (Administrator+) Stored CrossSite Scripting vulnerability
27 February, 2023
Authenticated (Contributor+) Stored CrossSite Scripting vulnerability
27 February, 2023
Multiple CrossSite Request Forgery (CSRF) vulnerabilities
5 September, 2022