WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation

Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)

SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation

WordPress Depicter Plugin 3.6.1 - SQL Injection

ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)

Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)

Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)

WordPress Core 6.2 - Directory Traversal

FoxCMS 1.2.5 - Remote Code Execution (RCE)

Drupal 11.x-dev - Full Path Disclosure

KiviCare Clinic & Patient Management System (EHR) 3.6.4 - Unauthenticated SQL Injection

UJCMS 9.6.3 - User Enumeration via IDOR

Inventio Lite 4 - SQL Injection

Apache Commons Text 1.10.0 - Remote Code Execution

Tatsu 3.3.11 - Unauthenticated RCE

Hunk Companion Plugin 1.9.0 - Unauthenticated Plugin Installation