Authenticated (Subscriber+) SQL Injection via `prgSortPostType` Parameter vulnerability
17 June, 2025
Contributor+ Stored XSS vulnerability
22 May, 2025
Authenticated (Author+) Stored CrossSite Scripting via File Upload vulnerability
1 August, 2024
Authenticated (Subscriber+) SQL Injection vulnerability
11 June, 2024
Information Exposure vulnerability
26 April, 2024