Admin+ Stored XSS vulnerability
19 May, 2025
CSRF to Settings Change vulnerability
3 February, 2025
CrossSite Request Forgery to Authenticated (Subscriber+) Arbitrary File Upload vulnerability
27 January, 2025
Insecure Direct Object References vulnerability
15 May, 2024
Reflected Cross Site Scripting (XSS) vulnerability
16 April, 2024