CrossSite Request Forgery to Limited File Deletion vulnerability
26 September, 2025
CrossSite Request Forgery to Plugin Settings Update vulnerability
26 September, 2025
forms plugin < 3.11.1 Unauthenticated PHP Object Injection vulnerability
9 September, 2025
Authenticated (Contributor+) Stored CrossSite Scripting via CSTI vulnerability
26 June, 2025
Admin+ Stored XSS vulnerability
19 May, 2025