Authenticated (Subscriber+) SQL Injection vulnerability
21 March, 2025
PHP Object Injection vulnerability
23 February, 2025
Insecure Direct Object Reference to Authenticated (Subscriber+) Private Messages Disclosure vulnerability
17 February, 2025
Authenticated (Subscriber+) Limited ServerSide Request Forgery vulnerability
17 February, 2025
Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Deletion vulnerability
19 November, 2024