WordPress Plugin DB Backup is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin DB Backup version 4.5 is vulnerable; prior versions may also be affected.
Edit the source code to ensure that input is properly verified or disable the plugin until a fix is available
WordPress Plugin Comment Rating 'id' Parameter SQL Injection (2.9.23)
Drupal Core 8.6.x Cross-Site Scripting (8.6.0 - 8.6.14)
WordPress Plugin AppPresser-Mobile App Framework Cross-Site Scripting (1.1.4)
WordPress Plugin Embed Youtube Video SQL Injection (1.0)