Authenticated (Contributor+) Stored CrossSite Scripting via Typewriter Widget vulnerability
1 August, 2025
Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure via Shortcode vulnerability
3 February, 2025
Cross Site Scripting (XSS) vulnerability
24 September, 2024