Vulnerabilities

    CVE-2017-16653 CSRF vulnerability

    CVE-2017-12867 Invalid token creation and validation

    CVE-2018-7644 Improper signature validation

    CVE-2018-1000025 User impersonation

    CVE-2017-6931 Settings Tray access bypass

    CVE-2017-6930 Language fallback can be incorrect on multilingual sites with node access restrictions

    CVE-2017-6919 Access Bypass

    CVE-2017-6381 Remote code execution

    CVE-2017-6377 Access Bypass

    CVE-2017-6931 Settings Tray access bypass