Authenticated (Contributor+) Stored CrossSite Scripting via `datacolor` Attribute vulnerability
11 June, 2025
Cross Site Request Forgery (CSRF) vulnerability
10 April, 2024
Contributor+ Stored XSS vulnerability
20 December, 2022
Authenticated Reflected CrossSite Scripting (XSS) vulnerability
16 December, 2021
Stored CrossSite Scripting (XSS) via Arbitrary Setting Update vulnerability
29 October, 2021