Casol

**Name of the Vulnerable Software and Affected Versions** WP Job Portal versions prior to 2.2.0 **Description** The issue is related to improper neutralization of input during web page generation, leading to a Stored XSS (Cross-site Scripting) vulnerability. This allows for the storage of malicious scripts in the web application, which can then be executed by other users, potentially leading to unauthorized actions or data theft. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For WP Job Portal versions prior to 2.2.0, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** JS Help Desk – Best Help Desk & Support Plugin versions n/a through 2.8.7 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Stored XSS, which can be exploited. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For versions n/a through 2.8.7, update to a version later than 2.8.7 to resolve the issue. At the moment, there is no information about additional mitigation measures.