Authenticated (Contributor+) Stored CrossSite Scripting via 'pcsml_smartlists_h' vulnerability
16 August, 2025
Authenticated (Contributor+) Local File Inclusion via 'header_layout' vulnerability
16 August, 2025
Unauthenticated Arbitrary Shortcode Execution vulnerability
16 August, 2025
Unauthenticated Limited Local File Inclusion vulnerability
6 December, 2024
Cross Site Request Forgery (CSRF) vulnerability
9 April, 2024