Vulnerabilities

    CVE-2015-2171 PHP object injection attack in SessionCookie

    CVE-2016-4567 XSS security vulnerability

    CVE-2015-3224 IP whitelist bypass

    CVE-2015-2963 Content type spoofing vulnerability

    SS-2016-016 XSS In CMSSecurity BackURL

    SS-2016-010 ReadOnly transformation for formfields exploitable

    CVE-2015-2068 Cross Site Scripting

    CVE-2015-2067 Local file inclusion

    CVE-2016-9452 Denial of service via transliterate mechanism

    CVE-2016-9450 Incorrect cache context on password reset page