WordPress JupiterX Core plugin <= 4.14.1 - Authenticated (Subscriber+) Missing Authorization To Limited File Upload via Popup Template Import vulnerability

Authenticated Subscriber+ Missing Authorization To Limited File Upload via Popup Template Import vulnerability discovered by Jack Pas Dark. - Black Lantern Security in WordPress Plugin JupiterX Core versions = 4.14.1...

websitebaker add-on concert calendar 2.1.4 - Multiple Vulnerabilities

No description provided by source. Advisory: Websitebaker Add-on 'Concert Calendar 2.1.4' XSS & SQLi vulnerability Advisory ID: SSCHADV2013-001 Author: Stefan Schurtz Affected Software: Successfully tested on Concert Calendar 2.1.4 Vendor URL:...

BoltWire 3.4.16 Multiple XSS vulnerabilities

Advisory: BoltWire 3.4.16 Multiple XSS vulnerabilities Advisory ID: SSCHADV2012-001 Author: Stefan Schurtz Affected Software: Successfully tested on BoltWire 3.4.16 Vendor URL: http://www.boltwire.com/ Vendor Status: informed ========================== Vulnerability Description...

Beehive Forum 101 Multiple XSS vulnerabilities

Advisory: Beehive Forum 101 Multiple XSS vulnerabilities Advisory ID: SSCHADV2011-042 Author: Stefan Schurtz Affected Software: Successfully tested on Beehive Forum 101 Vendor URL: http://www.beehiveforum.co.uk/ Vendor Status: informed ========================== Vulnerability Description...