Tagged: Cybersecurity Alert

Mattermost versions 11.5.x

Mattermost versions 11.5.x

Mattermost versions 11.5.x

Mattermost versions 11.5.x

Mattermost Plugins versions

Mattermost Plugins versions

Mattermost versions 11.5.x

Mattermost versions 11.5.x

Mattermost versions 11.5.x

The Feeds for YouTube (YouTube video, channel, and gallery plugin) WordPress plugin before 2.6.4 is vulnerable to unauthorized modification of the Feeds for YouTube (YouTube video, channel, and gallery plugin) WordPress plugin before 2.6.4’s...

The Autoptimize WordPress plugin before 3.1.15, Clearfy Cache WordPress plugin before 2.4.2, Speed Optimizer WordPress plugin before 7.7.9 are vulnerable to unauthenticated Stored Cross-Site Scripting (XSS) due to a predictable replacement hash used during...

The WP Photo Album Plus WordPress plugin before 9.1.11.001 does not properly sanitize and escape a parameter before using it in a SQL query, allowing unauthenticated users to perform SQL injection attacks. More information...

The WP Maps WordPress plugin before 4.9.3 does not properly sanitize a parameter before using it in a file path, allowing authenticated users to perform Local File Inclusion attacks. More information : https://wpscan.com/vulnerability/18b36672-58d7-44fa-b653-b728e9ef257a/

The Ajax Load More WordPress plugin before 7.8.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high...