Vulnerability history
0 present
6 patched
Authenticated (Contributor+) Stored DOMBased CrossSite Scripting via FancyBox 5 JavaScript Library vulnerability
6.5
3 April, 2025
Authenticated (Author+) Arbitrary File Upload vulnerability
9.1
7 January, 2025
Incomplete Authorization via 'save_image' and 'save_images' vulnerability
2.2
12 September, 2023
Unauth. Plugin Settings Change vulnerability
6.5
28 October, 2022
Reflected CrossSite Scripting (XSS) vulnerability
6.1
6 June, 2022
