Am!R

**Name of the Vulnerable Software and Affected Versions** Pretty-Link WordPress plugin version 1.5.2 **Description** The issue is related to a Cross-Site Scripting (XSS) problem. XSS is a type of security vulnerability that allows an attacker to inject malicious scripts into a website, potentially leading to unauthorized access or control. **Recommendations** For Pretty-Link WordPress plugin version 1.5.2, update to a newer version that addresses the XSS issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BizDirectory versions 2.04 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the `page` parameter in a search action to the default URI. This could potentially lead to unauthorized actions on the affected system. **Recommendations** For BizDirectory versions 2.04 and earlier, update to a version later than 2.04 to resolve the issue. As a temporary workaround, consider restricting access to the search action or validating and sanitizing the `page` parameter to prevent malicious input.