Plugin Vulnerabilities Added This Week That Are In The Current Version of the Plugins

• Reflected cross-site scripting (XSS) vulnerability in WP Js External Link Info, discovered by Ashiyane Digital Security Team
• Open redirect (after interstitial) vulnerability in WP Js External Link Info, discovered by Ashiyane Digital Security Team

Additional Plugin Vulnerabilities Added This Week

• Reflected cross-site scripting (XSS) vulnerability in TubePress, discovered by Ashiyane Digital Security Team
• Open redirect in WP No External Links, discovered by Ashiyane Digital Security Team
• Reflected cross-site scripting (XSS) vulnerability  in WP Symposium Pro Social Network, discovered by Rahul Pratap Singh

Vulnerabilities Added This Week

• Authenticated persistent cross-site scripting (XSS) vulnerability  in WP Symposium Pro Social Network plugin, discovered by Rahul Pratap Singh
• Cross-site request forgery (CSRF) vulnerability in WP Symposium Pro Social Network plugin, discovered by Rahul Pratap Singh

False Vulnerability Reports

• File upload vulnerability not in FormCraft – Form Builder

Ridiculous Vulnerability Reports

• Cross-site scripting (XSS) vulnerability in NextGEN Gallery