#firefox

Kortex version 1.0 suffers from an insecure direct object reference vulnerability.

Microsoft on Tuesday shipped fixes to address a total of 90 security flaws, including 10 zero-days, of which six have come under active exploitation in the wild. Of the 90 bugs, seven are rated Critical, 79 are rated Important, and one is rated Moderate in severity. This is also in addition to 36 vulnerabilities that the tech giant resolved in its Edge browser since last month. The Patch Tuesday

WordPress MapFig Studio plugin versions 0.2.1 and below suffer from cross site request forgery and cross site scripting vulnerabilities.

WordPress Profilepro plugin versions 1.3 and below suffer from a persistent cross site scripting vulnerability.

WordPress Light Poll plugin versions 1.0.0 and below suffer from multiple cross site request forgery vulnerabilities.

WordPress PVN Auth Popup plugin version 1.0.0 suffers from a persistent cross site scripting vulnerability.

Giftora version 1.0 suffers from a cross site request forgery vulnerability.

Gas Agency Management version 2022 suffers from a remote shell upload vulnerability.

Farmacia Gama version 1.0 Farmacia Gama version 1.0 suffers from a cross site request forgery vulnerability.

Employees Pay Slip PDF Generator System version 1.0 suffers from a cross site request forgery vulnerability.