CrossSite Request Forgery to Stored CrossSite Scripting vulnerability
25 August, 2025
Authenticated (Author+) Arbitrary File Upload vulnerability
11 June, 2025
Authenticated (Contributor+) Stored CrossSite Scripting via autoplay Parameter vulnerability
20 May, 2024
Multiple Cross Site Request Forgery (CSRF) vulnerability
19 April, 2024
Unauthenticated Arbitrary SQL Execution vulnerability
13 March, 2024