Authenticated (Contributor+) Stored CrossSite Scripting via 'buddyforms_nav' Shortcode vulnerability
21 February, 2025
Authenticated (Contributor+) Stored CrossSite Scripting vulnerability
31 January, 2025
Cross Site Scripting (XSS) vulnerability
30 September, 2024
Authenticated (Contributor+) Privilege Escalation vulnerability
16 September, 2024
Email Verification Bypass due to Insufficient Randomness vulnerability
5 June, 2024