CVE-2026-5306

The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting is enabled...

Bugsink 跨站脚本漏洞

Bugsink is an open-source, self-hosted bug tracking software developed by Bugsink. Versions of Bugsink prior to 2.0.13 contained a cross-site scripting vulnerability. This vulnerability stemmed from unvalidated attackers who could submit events to the project, allowing them to store arbitrary...