Drupal Core is prone to a session fixation vulnerability. An attacker may leverage this issue to hijack an arbitrary session and gain access to sensitive information, which may help in launching further attacks. Drupal Core versions 5.x ranging from 5.0 and up to and including 5.8 are vulnerable.
Update to Drupal Core version 5.9 or latest
WordPress Plugin MobiLoud-WordPress Mobile Apps-Convert your WordPress Website to Native Mobile Apps Remote Code Execution (4.0.1)
WordPress Plugin Maintenance Cross-Site Request Forgery (3.6.4)
WordPress Plugin WP Google Maps Multiple Cross-Site Scripting Vulnerabilities (6.0.26)
WordPress Plugin Child Themes Helper Multiple Vulnerabilities (2.0)
WordPress Plugin Wechat Reward Cross-Site Request Forgery (1.7)