WordPress Plugin Brizy-Page Builder Multiple Vulnerabilities (2.4.43)

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/brizy/brizy-page-builder-2443-missing-authorization

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/brizy/brizy-page-builder-2443-authenticated-contributor-stored-cross-site-scripting-via-custom-attributes

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/brizy/brizy-page-builder-2443-authenticated-contributor-store-cross-site-scripting-via-widget-link-to-url

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/brizy/brizy-page-builder-2443-unauthenticated-stored-cross-site-scripting-via-form

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/brizy/brizy-page-builder-2443-authenticatedcontributor-stored-cross-site-scripting-via-form-functionality

https://plugins.svn.wordpress.org/brizy/trunk/readme.txt

WordPress Plugin Custom Background 'uploadify.php' Arbitrary File Upload (1.01)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4287)

SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17303)

Oracle Database Server Other Vulnerability (CVE-2006-1872)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7835)