Authenticated (Contributor+) Stored CrossSite Scripting via Zipped SVG vulnerability
7 June, 2024
Authenticated (Contributor+) Path Traversal via esc_dir Function vulnerability
7 June, 2024
Broken Access Control vulnerability
27 May, 2024
Broken Access Control vulnerability
25 April, 2024
Reflected Cross Site Scripting (XSS) vulnerability
16 April, 2024