[MEDIUM] Information Cards Module vulnerable to Cross-site Scripting

PKSA-7zfn-cf6g-wkjz CVE-2010-10004 GHSA-2phw-rgr7-5pvh

Affected version: <1.0

Reported by:
GitHub

[HIGH] Incorrect signature verification

PKSA-tgfd-r254-m1y8 CVE-2017-12874 GHSA-fj28-869x-vv5g

Affected version: <1.0.1

Reported by:
GitHub, FriendsOfPHP/security-advisories