WordPress TelSender plugin <= 1.14.14 - Unauthenticated Stored Cross-Site Scripting via Telegram Chat Title vulnerability

Unauthenticated Stored Cross-Site Scripting via Telegram Chat Title vulnerability discovered by Kai Aizen in WordPress Plugin TelSender versions = 1.14.14...

Discourse-Chat 安全漏洞

Discourse-Chat is a free open source chat plugin for Discourse open source internet forum software. A security vulnerability exists in versions of Discourse-Chat prior to 0.9, which originated from a cross-site scripting XSS attack by an administrator user inserting HTML in the chat title and...