WordPress Caldera Forms plugin version 1.3.5.3 suffers from a cross site scripting vulnerability.
5fe319cfc0582676fbf3df11ae0eedd99b8dcaba165bf4d04951d75ab931d4e3
Craft CMS versions prior to build 2791 suffer from a server-side template injection vulnerability.
d6c07b9c38fb3cfe42f98d1ca5686bfe86383f8459ba8e4a28ecb5a9583adf0b