Authenticated (Contributor+) Stored CrossSite Scripting via mla_tag_cloud and mla_term_list Shortcodes vulnerability
16 July, 2025
Stored Cross Site Scripting (XSS) vulnerability
31 March, 2025
Reflected CrossSite Scripting vulnerability
3 January, 2025
Remote Code Execution (RCE) vulnerability
1 November, 2024
Authenticated (Author+) Arbitrary File Upload via mlainlineedituploadscripts AJAX Action vulnerability
13 August, 2024