Motors

Authenticated (Subscriber+) Arbitrary Shortcode Execution via Custom Title vulnerability <= 1.4.43

Missing Authorization vulnerability <= 1.4.9

Reflected Cross Site Scripting (XSS) vulnerability <= 1.4.6

Server Side Request Forgery (SSRF) vulnerability <= 1.4.6

Multiple CrossSite Request Forgery (CSRF) vulnerabilities <= 1.4.4