PT-2025-38122

Name of the Vulnerable Software and Affected Versions: StoreEngine versions up to and including 1.5.0 Description: The StoreEngine WordPress plugin is susceptible to a path traversal issue. This allows authenticated attackers with Subscriber-level access or higher to read arbitrary files on the...

PT-2023-17810 · Alextselegidis · Easyappointments

Name of the Vulnerable Software and Affected Versions: alextselegidis/easyappointments versions prior to 1.5.0 Description: The issue is related to stored Cross-site Scripting XSS in the GitHub repository alextselegidis/easyappointments. This type of attack occurs when an application stores user...

PT-2022-7426 · Gajim +3 · Gajim +3

Name of the Vulnerable Software and Affected Versions: Gajim versions 1.4.7 and earlier Description: The issue allows attackers to correct messages that were not sent by them via crafted XML stanzas. The attacker needs to be part of the group chat or single chat. This can potentially impact the...

PT-2022-13441 · WordPress · Wp Fundraising Donation/Crowdfunding Platform

Name of the Vulnerable Software and Affected Versions: WP Fundraising Donation and Crowdfunding Platform WordPress plugin versions prior to 1.5.0 Description: The issue is related to an SQL injection that can be exploited by unauthenticated users due to a parameter not being properly sanitized an...