2 matches found
EUVD-2026-32037
The Style Kits – Advanced Theme Styles for Elementor, Elementor Kits & Elementor Patterns plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '/wp-json/agwp/v1/tokens/save' endpoint kit title parameter in versions up to, and including, 2.5.0 due to insufficient input...
authentik 授权问题漏洞
authentik is an open source identity provisioning application from authentik open source. An authorization issue vulnerability exists in authentik versions prior to 2025.6.3 and 2025.4.3, which stems from a lack of session checking for RAC endpoint tokens, which could lead to session hijacking...