Enfold

Authenticated (Contributor+) Stored CrossSite Scripting via wrapper_class and class Parameters vulnerability <= 6.0.3

Reflected Cross Site Scripting (XSS) vulnerability <= 5.6.9

Reflected Cross Site Scripting (XSS) vulnerability <= 5.6.4

Reflected CrossSite Scripting (XSS) vulnerability <= 4.8.3

Rewrite Portfolio Permalink Structure & Information Disclosure <= 4.2