WordPress Plugin WP OAuth Server (OAuth Authentication) Security Bypass (3.1.4)

https://security.dxw.com/advisories/the-oauth2-complete-plugin-for-wordpress-uses-a-pseudorandom-number-generator-which-is-non-cryptographically-secure/

https://packetstormsecurity.com/files/133062/WordPress-OAuth2-Complete-3.1.3-Insecure-Random.html

WordPress Plugin Form Store to DB includes Backdoor [Only if downloaded via the vendor website] (1.0.9)

Drupal Core 8.x Multiple Security Bypass Vulnerabilities (8.0.0 - 8.3.6)

IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2019-4156)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-1461)

WordPress Plugin YITH WooCommerce Multi-step Checkout Security Bypass (1.7.4)