A stored cross-site scripting (XSS) vulnerability was discovered in the MainWP WordPress plugin. The vulnerability was found in the "Add Contact" > Contact Name field, where u ...
Continue Reading
August 05, 2025
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
The SCIM provisioning feature in HackerOne's sandbox program was vulnerable to account takeover. An attacker could create a user with an email they controlled, import existing users, assign the v ...
Continue Reading
August 05, 2025
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
The vulnerability allowed unauthorized disclosure of private email addresses of WakaTime users through the private leaderboards feature. The email addresses were exposed to leaderboard creators and me ...
Continue Reading
August 05, 2025
A reflected Cross-Site Scripting (XSS) vulnerability was identified in the "Create Category" feature of the post creation functionality. When a user entered a malicious JavaScript pa ...
Continue Reading
August 05, 2025
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
The exposure of personal IP addresses through email messages has been identified as a potential security issue. Email messages can pass through multiple servers, which may store or record the content, ...
Continue Reading
August 05, 2025
Back to Main
