CVE-2023-1978 — CVSS 6.1 (medium): The ShiftController Employee Shift Scheduling plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the query string in…
CVE-2024-9435 — CVSS 6.1 (medium): The ShiftController Employee Shift Scheduling plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URL keys in all…