WonderCMS 2.1.0 Cross Site Request Forgery

document.forms0.submit; !-- Disclosure Timeline: --------------------- 2017-06-16: Vulnerability found. 2017-06-17: Reported to vendor. 2017-06-17: Vendor responded and send a new version for test in it. 2017-06-17: Test new version and vulernability patched successfully. 2017-06-18: Vendor...

WordPress WP Job Manager 1.26.1 Cross Site Scripting

Exploit Title: Stored Cross-Site Scripting in WP Job Manager Date: 2017-06-15 Exploit Author: 0xCode Security Lab , Ehsan Hosseini Software Link: https://wordpress.org/plugins/wp-job-manager/ http://wpjobmanager.com/ Version: 1.26.1 Contact: [email protected] 0xCode Lab ID: ---------------...