Authenticated (Contributor+) Stored CrossSite Scripting via Multiple Shortcodes vulnerability
5 days ago
Unauthenticated Arbitrary PHP Object Instantiation vulnerability
3 April, 2025
CrossSite Request Forgery to Stored CrossSite Scripting vulnerability
27 March, 2025
Reflected CrossSite Scripting via 'account_id' and 'account_username' vulnerability
27 March, 2025
Reflected CrossSite Scripting via envato_code[] vulnerability
2 September, 2024