Skalucy

Say thanks

1273.02

XP

217

Reports

27

Reports, last 90 days

#9

15 Dec, 2025

Lvl 4

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Rencontre<= 3.13.7 Cross Site Request Forgery (CSRF)	0.44	7.1	No date
WP sIFR<= 0.6.8.1 Cross Site Request Forgery (CSRF)	0.44	7.1	No date
Hostel<= 1.1.5.9 Cross Site Scripting (XSS)	N/A	7.1	Oct 28, 2025
ANAC XML Bandi di Gara<= 7.7 Cross Site Scripting (XSS)	10.65	7.1	Oct 25, 2025
FV Antispam<= 2.7 Cross Site Scripting (XSS)	14.2	7.1	Oct 19, 2025
Sendle Shipping<= 6.02 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 27, 2025
Floating Window Music Player<= 3.4.2 Cross Site Request Forgery (CSRF)	1.78	7.1	Aug 27, 2025
XmasB Quotes<= 1.6.1 Cross Site Scripting (XSS)	7.1	7.1	May 30, 2025
Theme Switcher Reloaded<= 1.1 Cross Site Scripting (XSS)	7.1	7.1	May 30, 2025
NextGEN Gallery Search<= 2.12 Cross Site Scripting (XSS)	7.1	7.1	May 30, 2025
e-Boekhouden.nl<= 1.9.3 Cross Site Scripting (XSS)	7.1	7.1	May 29, 2025
Comments Capcha Box<= 1.1 Cross Site Scripting (XSS)	7.1	7.1	May 29, 2025
WP-Database-Optimizer-Tools<= 0.2 Cross Site Request Forgery (CSRF)	N/A	5.4	May 30, 2025
Import CDN-Remote Images<= 2.1.2 Cross Site Request Forgery (CSRF)	1.78	7.1	Jun 7, 2025
Pricing Table builder<= 1.5.2 Cross Site Request Forgery (CSRF)	0.44	7.1	No date
WPShapere - WordPress admin theme<= 1.4.1 Cross Site Request Forgery (CSRF)	1.78	7.1	May 29, 2025
WP GDPR Cookie Consent<= 1.0.0 Cross Site Request Forgery (CSRF)	1.78	7.1	May 29, 2025
Relocate Upload<= 0.24.1 Cross Site Request Forgery (CSRF)	1.78	7.1	May 27, 2025
WP Optimizer<= 2.3.7 Cross Site Request Forgery (CSRF)	2.4	9.6	May 23, 2025
Twitch TV Embed Suite<= 2.1.0 Cross Site Request Forgery (CSRF)	1.78	7.1	May 22, 2025
Image Slider With Description<= 9.2 Cross Site Request Forgery (CSRF)	1.78	7.1	May 19, 2025
WP Permalink Translator<= 1.7.6 Cross Site Request Forgery (CSRF)	3.55	7.1	May 27, 2025
Slickstream<= 2.0.3 Cross Site Request Forgery (CSRF)	2.15	4.3	May 26, 2025
Image Cleanup<= 1.9.2 Cross Site Request Forgery (CSRF)	2.15	4.3	May 26, 2025
Additional Order Filters for WooCommerce<= 1.22 Cross Site Request Forgery (CSRF)	3.55	7.1	May 24, 2025
Dropify<= 4.7.1 Cross Site Scripting (XSS)	14.2	7.1	May 25, 2025
WP Inventory Manager<= 2.3.4 Cross Site Request Forgery (CSRF)	2.15	4.3	May 7, 2025
Logo Manager For Samandehi<= 0.5 Cross Site Request Forgery (CSRF)	1.78	7.1	May 21, 2025
Storyform<= 0.6.14 Cross Site Scripting (XSS)	7.1	7.1	May 19, 2025
Post Author<= 1.1.1 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 21, 2025
YouTube Simple Gallery<= 2.2.0 Cross Site Scripting (XSS)	4.88	6.5	Apr 22, 2025
WP Maintenance Mode & Site Under Construction<= 4.3 Cross Site Request Forgery (CSRF)	2.15	4.3	May 29, 2025
Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant<= 4.1.1 Cross Site Request Forgery (CSRF)	2.15	4.3	May 27, 2025
Import Export For WooCommerce<= 1.6.2 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 17, 2025
Sidebar Manager Light<= 1.18 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 29, 2025
Modern Polls<= 1.0.10 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 21, 2025
Print Science Designer<= 1.3.155 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 15, 2025
WPVN<= 0.7.8 Cross Site Request Forgery (CSRF)	N/A	4.3	Apr 12, 2025
illow – Cookies Consent<= 0.2.0 Cross Site Request Forgery (CSRF)	2.15	4.3	Apr 3, 2025
Bulk Term Editor<= 1.1.4 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 11, 2025
Ever Accounting<= 2.1.5 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 26, 2025
InPost Gallery<= 2.1.4.3 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 13, 2025
Mobile Smart<= v1.3.16 Cross Site Scripting (XSS)	14.2	7.1	Mar 27, 2025
Easyfonts<= 1.1.2 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 27, 2025
Customize Login Page<= 1.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 28, 2025
Scheduled<= 1.0 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 29, 2025
FraudLabs Pro for WooCommerce<= 2.22.8 Cross Site Request Forgery (CSRF)	3.55	7.1	Feb 22, 2025
Nepali Date Utilities<= 1.0.15 Cross Site Request Forgery (CSRF)	3.55	7.1	Feb 25, 2025
Doppler Forms<= 2.5.1 Cross Site Request Forgery (CSRF)	3.55	7.1	Feb 27, 2025
JobWP<= 2.3.9 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Sequential Order Numbers for WooCommerce<= 3.6.2 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Advanced All in One Admin Search by WP Spotlight<= 1.1.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 27, 2025
Flickr Photostream<= 3.1.8 Cross Site Scripting (XSS)	14.2	7.1	Mar 25, 2025
Snow Storm<= 1.4.6 Cross Site Scripting (XSS)	14.2	7.1	Feb 28, 2025
Widget Manager Light<= 1.18 Broken Access Control	13	6.5	Feb 27, 2025
Delete Post Revision<= 1.1 Cross Site Scripting (XSS)	14.2	7.1	Mar 21, 2025
WP Cleaner<= 1.1.5 Cross Site Scripting (XSS)	14.2	7.1	Mar 19, 2025
Pages Order<= 1.1.3 Cross Site Scripting (XSS)	14.2	7.1	Mar 19, 2025
AtomChat<= 1.1.7 Broken Access Control	4.3	4.3	Feb 27, 2025
Product Notices for WooCommerce<= 1.3.4 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Query Wrangler<= 1.5.54 Cross Site Request Forgery (CSRF)	2.7	5.4	Feb 27, 2025
CLP – Custom Login Page by NiteoThemes<= 1.5.5 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Terms of Use<= 2.0 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 18, 2025
ShowTime Slideshow<= 1.6 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 19, 2025
Login Alert<= 0.2.1 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 23, 2025
OmniLeads Scripts and Tags Manager<= 1.3 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 23, 2025
Usermaven<= 1.2.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 27, 2025
Google Font Fix<= 2.3.1 Cross Site Scripting (XSS)	14.2	7.1	Mar 16, 2025
Nmedia MailChimp<= 5.4 Cross Site Scripting (XSS)	6.5	6.5	Mar 16, 2025
Terms & Conditions Per Product<= 1.2.15 Broken Access Control	10.6	5.3	Feb 27, 2025
3DPrint Lite<= 2.1.3.5 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 27, 2025
reCAPTCHA for all<= 2.22 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 27, 2025
Custom Field For WP Job Manager<= 1.4 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
ValidateCertify<= 1.6.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 20, 2025
Flexible Cookies<= 1.1.8 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 21, 2025
wpShopGermany IT-RECHT KANZLEI<= 2.0 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 21, 2025
Replace Default Words<= 1.3 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 16, 2025
AdSense Privacy Policy<= 1.1.1 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 10, 2025
Browser Address Bar Color<= 3.3 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 10, 2025
Super Static Cache<= 3.3.5 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 12, 2025
Custom Script Integration<= 2.1 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 13, 2025
Contact Form 7 Material Design<= 1.0.0 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 5, 2025
GP Back To Top<= 3.0 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 5, 2025
Custom Smilies<= 2.9.2 Cross Site Scripting (XSS)	14.2	7.1	Feb 21, 2025
Are you robot google recaptcha for wordpress<= 2.2 Cross Site Scripting (XSS)	14.2	7.1	Feb 20, 2025
WP Add Active Class To Menu Item<= 1.0 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 21, 2025
Custom Dashboard Page<= 1.0 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 21, 2025
Plugins Last Updated Column<= 0.1.3 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 25, 2025
REST API TO MiniProgram<= 5.1.2 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 25, 2025
Skrill Official<= 1.0.66 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 26, 2025
ZipList Recipe<= 3.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 27, 2025
Delete Original Image<= 0.4 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 27, 2025
Maintenance Notice<= 1.0.6 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Rankchecker.io Integration<= 1.0.9 Cross Site Request Forgery (CSRF)	3.55	7.1	Feb 28, 2025
W3Counter Free Real-Time Web Stats<= 4.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Admin Menu Manager<= 1.0.3 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 20, 2025
Client Dash<= 2.2.1 Broken Access Control	10.6	5.3	Oct 17, 2023
Ovic Responsive WPBakery<= 1.3.0 Broken Access Control	5.4	5.4	Jul 21, 2023
Marker.io <= 1.1.8 Cross Site Request Forgery (CSRF)	2.15	4.3	Sep 29, 2023
Quick Interest Slider<= 2.9.4 Cross Site Request Forgery (CSRF)	2.7	5.4	Sep 29, 2023

Report vulnerabilities to earn bounties and rewards!

Include pending