Insecure Direct Object Reference to Authenticated (GiveWP Worker+) Arbitrary Post Actions vulnerability
7 days ago
Reflected Cross Site Scripting (XSS) vulnerability
6 June, 2024
Authenticated (Contributor+) Stored CrossSite Scripting vulnerability
20 May, 2024
Authenticated(Contributor+) Stored CrossSite Scripting via Shortcode vulnerability
15 April, 2024
PHP Object Injection vulnerability
26 March, 2024