The Clerk WordPress plugin before 4.0.0 is affected by time-based attacks in the validation function for all API requests due to the usage of comparison…

The Add Comments WordPress plugin through 1.0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin…

The PostmagThemes Demo Import WordPress plugin through 1.0.7 does not validate the imported file, allowing high-privilege users such as admin to upload arbitrary files (such…

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high…

The Advanced WP Columns WordPress plugin through 2.0.6 does not sanitise and escape some of its settings, which could allow high privilege users such as…

In isp, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System…

In gz, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution…

In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of…

In display, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with…

In display, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with…