R1Sky

**Name of the Vulnerable Software and Affected Versions** Made Neat Acknowledgify versions through 1.1.3 **Description** A missing authorization issue exists in Made Neat Acknowledgify acknowledgify. The issue allows unauthorized access. **Recommendations** Update Acknowledgify to a version later than 1.1.3.

**Name of the Vulnerable Software and Affected Versions** IP Based Login versions through 2.4.3 **Description** An issue exists in IP Based Login that allows for Stored Cross-site Scripting (XSS). The flaw is due to improper neutralization of input during web page generation. This can allow an attacker to inject malicious scripts into web pages viewed by other users. The affected component is the IP Based Login plugin. **Recommendations** Update IP Based Login to a version later than 2.4.3.

Name of the Vulnerable Software and Affected Versions: Helmut Wandl Advanced Settings versions n/a through 3.1.1 Description: A Cross-Site Request Forgery (CSRF) issue exists in Helmut Wandl Advanced Settings. This allows attackers to perform actions on behalf of an unsuspecting user. Recommendations: Update Helmut Wandl Advanced Settings to a version later than 3.1.1.