Spectra
Brainstorm Force
Developer
2.19.16
Latest version
1,000,000
Installations
Nov 12, 2025
Last updated
Vulnerability history
0 present
21 fixed
6 Mitigation rules
- Authenticated (Contributor+) Stored Cross-Site Scripting via Custom CSS vulnerability<= 2.19.14Nov 5, 2025
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 2.19.0Mar 25, 2025
- Authenticated (Contributor+) Stored Cross-Site Scripting via Team Widget vulnerability<= 2.16.2Dec 2, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.14.1Aug 7, 2024
- Broken Access Control vulnerability<= 2.13.7Jul 5, 2024
- Authenticated (Author+) Stored Cross-Site Scripting vulnerability<= 2.13.0May 24, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 2.12.8May 23, 2024
- Authenticated (Contributor+) Path Traversal vulnerability<= 2.12.6Apr 29, 2024
- Authenticated(Contributor+) Cross-Site Scripting via Custom CSS vulnerability<= 2.10.3Apr 4, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.7.9Dec 5, 2023
- Server Side Request Forgery (SSRF) vulnerability<= 2.6.6Jul 14, 2023
- Broken Access Control vulnerability<= 2.6.6Jul 14, 2023
- Contributor+ Stored XSS Vulnerability< 1.15.0Jan 24, 2023
- Contributor+ reCAPTCHA Settings Change Vulnerability<= 2.3.0Jan 23, 2023
- Captcha Bypass Vulnerability<= 2.3.0Jan 23, 2023
- Unauthenticated Email HTML Injection Vulnerability<= 2.3.0Jan 23, 2023
- Unauthenticated Email Spoofing Vulnerability<= 2.3.0Jan 23, 2023
- Broken Access Control + CSRF on Import_WPforms vulnerability<= 2.3.0Jan 23, 2023
- Broken Access Control + CSRF on Activate_Plugin vulnerability<= 2.3.0Jan 23, 2023
- Reflected Cross-Site Scripting (XSS) vulnerability<= 1.25.5Jun 13, 2022
- Authenticated Settings Change vulnerability<= 1.14.7Apr 8, 2020