PT-2024-11756 · 8 Degree Themes · 8Degree Themes Coming Soon Landing Page/Maintenance Mode Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: 8Degree Themes Coming Soon Landing Page and Maintenance Mode WordPress Plugin versions 2.2.0 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows for broken access control and the retrieval of...

GHSA-RM24-25XM-9454 Mattermost Server: Files may be rendered inline instead of downloaded, allowing script execution

An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window...