Authenticated (Contributor+) Stored CrossSite Scripting via title Parameter vulnerability
25 September, 2025
Authenticated (Contributor+) Stored CrossSite Scripting via popupID Parameter vulnerability
3 June, 2025
Cross Site Scripting (XSS) vulnerability
24 January, 2025
Broken Access Control vulnerability
30 September, 2024
Admin+ Stored XSS vulnerability
9 September, 2024