Authenticated (Contributor+) Stored DOMBased CrossSite Scripting via arialabel Parameter vulnerability
17 June, 2025
Editor+ Stored XSS vulnerability
7 April, 2025
Editor+ Stored XSS vulnerability
24 March, 2025
PHP Object Injection vulnerability
14 February, 2025
Cross Site Request Forgery (CSRF) vulnerability
9 November, 2024