Alliance bounty program
About Alliance Leaderboard Vulnerability database WordPress security
Login

Yuki Haruma

0
0
0
0
Twitter Github Website
13 March, 2023
Alliance XP
62.61
Total reports
31
Reports, last 90 days
0
Contributions 31
Achievements Soon

Report WordPress vulnerabilities, earn prizes and become an Alliance member!

Join Patchstack Alliance

Plugin

Simple Staff List <= 2.2.3 Cross Site Scripting (XSS) vulnerability

+2.95 AXP

5.9

17 August, 2023

Plugin

Cleverwise Daily Quotes <= 3.2 Cross Site Scripting (XSS) vulnerability

+14.2 AXP

7.1

17 August, 2023

Plugin

Art Direction <= 0.2.4 Cross Site Scripting (XSS) vulnerability

+4.88 AXP

6.5

12 July, 2023

Plugin

Replace Word <= 2.1 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

12 July, 2023

Plugin

Simple Light Weight Social Share (Tweet, Like, Share and Linkedin) <= 2.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

5 July, 2023

Plugin

Side Cart Woocommerce (Ajax) <= 2.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

28 June, 2023

Plugin

JS Job Manager <= 2.0.0 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

2 June, 2023

Plugin

Floating Action Button <= 1.2.1 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

30 May, 2023

Plugin

Headless CMS <= 2.0.3 Broken Authentication vulnerability

+10.6 AXP

5.3

30 May, 2023

Plugin

SKU Label Changer For WooCommerce <= 3.0 Broken Access Control vulnerability

+13 AXP

6.5

25 May, 2023

Plugin

Smart App Banner <= 1.1.2 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

22 May, 2023

Plugin

CALL ME NOW <= 3.0 Cross Site Request Forgery (CSRF) vulnerability

+0 AXP

4.3

12 May, 2023

Plugin

Plugins List <= 2.5 Cross Site Scripting (XSS) vulnerability

+2.95 AXP

5.9

28 April, 2023

Plugin

Logo Scheduler <= 1.2.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

24 April, 2023

Plugin

Easy Bet <= 1.0.2 SQL Injection vulnerability

+0 AXP

5.5

24 April, 2023

Plugin

Woocommerce Tip/Donation <= 1.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

24 April, 2023

Plugin

Display custom fields in the frontend – Post and User Profile Fields <= 1.2.0 Broken Access Control vulnerability

+3.23 AXP

4.3

24 April, 2023

Plugin

GPS Plotter <= 5.2.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 April, 2023

Plugin

Dave's WordPress Live Search <= 4.8.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 April, 2023

Plugin

Cab Grid <= 1.5.15 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 April, 2023

Plugin

Easy Slider Revolution <= 1.0.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 April, 2023

Plugin

eRocket <= 1.2.4 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 April, 2023

Plugin

Woocommerce Email Report <= 2.4 Cross Site Scripting (XSS) vulnerability

+0 AXP

7.1

21 April, 2023

Plugin

Redirect After Login <= 0.1.9 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 April, 2023

Plugin

ApexChat <= 1.3.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

18 April, 2023

Plugin

Captcha Them All <= 1.3.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

18 April, 2023

Plugin

a3 Portfolio <= 3.1.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

13 April, 2023

Plugin

Mobile Banner <= 1.5 Cross Site Request Forgery (CSRF) vulnerability

+0 AXP

4.3

29 March, 2023

Plugin

Enhanced Plugin Admin <= 1.16 Cross Site Request Forgery (CSRF) vulnerability

+0 AXP

5.4

21 March, 2023

Plugin

Event Manager for WooCommerce <= 3.8.6 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 March, 2023

Plugin

Branded Social Images <= 1.1.0 Broken Access Control vulnerability

+0 AXP

5.3

20 March, 2023

Back to top

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugin developers NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022

Social

DPA Privacy Policy Terms & Conditions © 2023 Patchstack

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugin developers NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022

Social

Let us know if we have missed a vulnerability reported elsewhere

Report arrow right Close

Thank you for contributing!

Successfully submit vulnerabilities and receive an invite to our Alliance platform.

Learn more arrow right Close