Unauthenticated PostConfirmation Booking Manipulation vulnerability
11 February, 2025
Authenticated (Contributor+) DOMBased Stored CrossSite Scripting via 'booking' Shortcode vulnerability
13 January, 2025
Admin+ Stored XSS vulnerability
7 November, 2024
Authenticated (Admin+) Stored CrossSite Scripting vulnerability
4 October, 2024
Reflected CrossSite Scripting vulnerability
30 August, 2024