Ickogz

**Name of the Vulnerable Software and Affected Versions** Elementor Website Builder versions through 3.35.5 **Description** The Elementor Website Builder software contains a flaw related to improper input handling during web page generation, specifically a DOM-Based Cross-site Scripting issue. This allows for potential malicious code execution within the context of a user's browser. **Recommendations** Update Elementor Website Builder to a version newer than 3.35.5.

**Name of the Vulnerable Software and Affected Versions** Realization Concerto Critical Chain Planner (aka CCPM) version 5.10.8071 **Description** The issue concerns a SQL Injection problem. It is located in the taskupdt/taskdetails.aspx webpage, specifically via the `projectname` parameter. **Recommendations** For version 5.10.8071, avoid using the `projectname` parameter in the taskupdt/taskdetails.aspx webpage until the issue is resolved.