2 matches found
PT-2025-1665 · WordPress · Borderless – Widgets
Name of the Vulnerable Software and Affected Versions: Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress versions up to, and including, 1.5.9 Description: The issue is related to Remote Code Execution due to a lack of sanitization on an imported...
FreePlane XML External Entity Injection Vulnerability
FreePlane is a set of free open source mind mapping tools. mindmap loader is one of the mind map loader. XML Parser is one of the XML file parser. An XML external entity injection vulnerability exists in the XML Parser of the mindmap loader in FreePlane 1.5.9 and earlier versions. An attacker can...