Anchor CMS version 0.12.7 suffers from a markdown persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version was discovered by Sinem Sahin in September of 2020.
Coturn version 4.5.1.x suffers from a loopback access control bypass vulnerability.
WordPress Custom Global Variables plugin version 1.0.5 suffers from a persistent cross site scripting vulnerability.
http://www.abtbungkla.go.th/test.php notified by Anonymous Indonesia
Tags: defacementWordPress Plugin Custom Global Variables 1.0.5 – ‘name’ Stored Cross-Site Scripting (XSS)
Tags: 0day, remote exploitCemetry Mapping and Information System 1.0 – Multiple Stored Cross-Site Scripting
Tags: 0day, remote exploit
