Recent Advisories

Severity ID Title Vendor Product Date Type
Unknown ADV-9207

Reflected Cross-Site Scripting (XSS) vulnerability in Human Resource Management System

CVE Details Basic Information Title Reflected Cross-Site Scripting (XSS) vulnerability in Human Resource Management System Type cve Published 2025-...

N/A N/A NEWS
Unknown ADV-9206

Why React Didn’t Kill XSS: The New JavaScript Injection Playbook

Security Update News Update Information Title Why React Didn’t Kill XSS: The New JavaScript Injection Playbook Update ID THN:7643234130F697D3...

N/A N/A NEWS
Unknown ADV-9205

Appzend <= 1.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via progressbarLayout Parameter

CVE Details Basic Information Title Appzend

N/A N/A NEWS
Unknown ADV-9204

Bonanza – WooCommerce Free Gifts Lite <= 1.0.0 - Missing Authorization to Authenticated (Subscriber+) Opt In Success

CVE Details Basic Information Title Bonanza – WooCommerce Free Gifts Lite

N/A N/A NEWS
Unknown ADV-9203

Fan Page <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter

CVE Details Basic Information Title Fan Page

N/A N/A NEWS
Unknown ADV-9202

YouTube Embed <= 10.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via instance Parameter

CVE Details Basic Information Title YouTube Embed

N/A N/A NEWS
Unknown ADV-9201

Hydra Booking 1.1.0 – 1.1.18 – Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via tfhb_reset_password_callback Function

CVE Details Basic Information Title Hydra Booking 1.1.0 – 1.1.18 – Missing Authorization to Authenticated (Subscriber+) Privilege Escal...

N/A N/A NEWS
Unknown ADV-9200

Sky Addons for Elementor <= 3.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

CVE Details Basic Information Title Sky Addons for Elementor

N/A N/A NEWS
Unknown ADV-9199

Magical Addons For Elementor <= 1.3.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Attributes

CVE Details Basic Information Title Magical Addons For Elementor

N/A N/A NEWS
Unknown ADV-9198

Adobe ColdFusion 2023.6 – Remote File Read

Exploit Details Basic Information Exploit Title Adobe ColdFusion 2023.6 – Remote File Read Exploit ID EDB-ID:52387 Type exploitdb Published 2...

N/A N/A NEWS