WordPress Scoutnet Kalender plugin <= 1.1.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability found by Simon Moser in WordPress Scoutnet Kalender plugin versions = 1.1.0. Solution 11.12.2019 - we were unable to find a patched version of this plugin...

Pages For Bitbucket Server 2.6.0 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2018-037 Product: Pages for Bitbucket Server Manufacturer: Simplenia AG Affected Versions: 2.6.0 and before Tested Versions: 2.6.0 Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: Medium Solution Status: Fixed Manufactur...