About Alliance Leaderboard Vulnerability database WordPress security
Login

yuyudhn

0
0
1
1
Alliance XP
497.42
Contributions
158
Contributions 158
Achievements Soon

Report WordPress vulnerabilities, earn prizes and become an Alliance member!

Join Patchstack Alliance

████

███████ █████ ██████████████████████████████████████████

+0 AXP

5.9

Pending

████

███████ █████ ███████████████████████████████████

+0 AXP

5.9

Pending

████

██████████████ █████ █████████████████████████████████████████████████

+0 AXP

5.9

Pending

████

██████████████ █████ ███████████████████████████████████

+0 AXP

5.9

Pending

████

█████████████████████ █████ ██████████████████████████████████████████

+5 AXP

5.4

Pending

████

█████████████████████ █████ ███████████████████████████████████

+7 AXP

7.1

Pending

████

█████████████████████ █████ ████████████████████████████████████████████████████████

+0 AXP

5.9

Pending

████

███████ █████ ██████████████████████████████████████████

+0 AXP

5.9

Pending

████

███████ █████ ████████████████████████████████████████████████████████

+0 AXP

5.9

Pending

████

█████████████████████ █████ ████████████████████████████████████████████████████████

+0 AXP

5.9

Pending

████

██████████████ █████ █████████████████████████████████████████████████

+0 AXP

5.9

Pending

████

██████████████ █████ ██████████████████████████████████████████

+4 AXP

6.5

Pending

████

██████████████ █████ ██████████████████████████████████████████

+0 AXP

5.9

Pending

████

█████████████████████ █████ █████████████████████████████████████████████████

+2 AXP

4.3

Pending

████

███████ █████ ███████████████████████████████████

+0 AXP

5.9

Pending

████

██████████████ █████ ██████████████████████████████████████████

+2 AXP

5.9

Pending

████

██████████████ █████ ██████████████████████████████████████████

+2 AXP

5.4

Pending

████

███████ █████ ████████████████████████████████████████████████████████

+4 AXP

6.5

Pending

████

██████████████ █████ █████████████████████████████████████████████████

+0 AXP

5.9

Pending

████

███████ █████ ███████████████████████████████████

+0 AXP

5.9

Pending

Plugin

Sunshine Photo Cart < 3.0.0 Order Manipulation vulnerability

+5.3 AXP

5.3

5 September, 2023

Plugin

SendPress Newsletters <= 1.22.3.31 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

5 September, 2023

Plugin

SendPress Newsletters <= 1.22.3.31 Cross Site Scripting (XSS)

+0 AXP

5.9

5 September, 2023

Plugin

Rescue Shortcodes <= 2.5 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

5 September, 2023

Plugin

Photo Gallery Slideshow & Masonry Tiled Gallery <= 1.0.13 Cross Site Scripting (XSS) vulnerability

+7.1 AXP

7.1

1 September, 2023

Plugin

Sermon'e – Sermons Online <= 1.0.0 Reflected Cross Site Scripting (XSS) vulnerability

+14.2 AXP

7.1

1 September, 2023

Plugin

Vertical Marquee Plugin <= 7.1 Cross Site Scripting (XSS)

+0 AXP

5.9

22 August, 2023

Plugin

Typing Effect <= 1.3.6 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

17 August, 2023

Plugin

wp tell a friend popup form <= 7.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

26 July, 2023

Plugin

wp tell a friend popup form <= 7.1 Cross Site Request Forgery (CSRF) vulnerability

+0 AXP

5.4

26 July, 2023

Plugin

Pinpoint Booking System <= 2.9.9.3.4 Parameter Tampering

+6.5 AXP

6.5

20 July, 2023

Plugin

Elastic Email Sender <= 1.2.6 Cross Site Scripting (XSS)

+0 AXP

5.9

20 July, 2023

Plugin

Art Decoration Shortcode <= 1.5.6 Cross Site Scripting (XSS)

+6.5 AXP

6.5

19 July, 2023

Plugin

Shortcode IMDB <= 6.0.8 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

11 July, 2023

Plugin

Image Social Feed Plugin <= 1.7.6 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

7 July, 2023

Plugin

Animated Number Counters <= 1.6 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

4 July, 2023

Plugin

Simple Site Verify <= 1.0.7 Cross Site Scripting (XSS) vulnerability

+0 AXP

4.3

4 July, 2023

Plugin

ApplyOnline – Application Form Builder and Manager <= 2.5.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

26 June, 2023

Plugin

Five Star Restaurant Reservations <= 2.6.7 Reflected Cross Site Scripting (XSS) vulnerability

+14.2 AXP

7.1

23 June, 2023

Plugin

Seed Fonts 2.3.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

16 June, 2023

Plugin

WP Matterport Shortcode <= 2.1.4 Cross Site Scripting (XSS)

+6.5 AXP

6.5

15 June, 2023

Plugin

Flo Forms <= 1.0.40 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

15 June, 2023

Plugin

TS Webfonts for さくらのレンタルサーバ <= 3.1.2 Cross Site Request Forgery (CSRF) vulnerability

+26 AXP

6.5

30 May, 2023

Plugin

WordPress Social Login <= 3.0.4 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

30 May, 2023

Plugin

Yandex Metrica Counter <= 1.4.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

30 May, 2023

Plugin

Worthy – VG WORT Integration für WordPress <= 1.6.5-6497609 6497609 CrossSite Request Forgery (CSRF) vulnerability

+4.3 AXP

4.3

30 May, 2023

Plugin

Unite Gallery Lite <= 1.7.61 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

30 May, 2023

Plugin

Telegram Bot & Channel <= 3.6.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

29 May, 2023

Plugin

Unite Gallery Lite <= 1.7.59 Local File Inclusion vulnerability

+0 AXP

6.0

22 May, 2023

Plugin

EventPrime <= 2.8.6 Sensitive Data Exposure

+5.3 AXP

5.3

22 May, 2023

Plugin

EventPrime <= 2.8.6 Reflected Cross Site Scripting (XSS)

+7.1 AXP

7.1

22 May, 2023

Plugin

Video Gallery <= 1.0.10 Cross Site Scripting (XSS) vulnerability

+7.1 AXP

7.1

15 May, 2023

Plugin

video carousel slider with lightbox <= 1.0.22 Cross Site Scripting (XSS) vulnerability

+7.1 AXP

7.1

15 May, 2023

Plugin

Button <= 1.1.23 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

12 May, 2023

Plugin

iframe popup <= 3.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

12 May, 2023

Plugin

wordpress vertical image slider plugin <= 1.2.16 Cross Site Scripting (XSS) vulnerability

+7.1 AXP

7.1

9 May, 2023

Plugin

WP Responsive Tabs horizontal vertical and accordion Tabs <= 1.1.15 Reflected Cross Site Scripting (XSS) vulnerability

+7.1 AXP

7.1

9 May, 2023

Plugin

Hostel <= 1.1.5.1 Cross Site Scripting (XSS)

+0 AXP

5.9

4 May, 2023

Plugin

Multi Rating <= 5.0.6 Cross Site Scripting (XSS)

+0 AXP

5.9

4 May, 2023

Plugin

Multi Rating <= 5.0.6 Unauth Arbitrary rating value change

+5.3 AXP

5.3

4 May, 2023

Plugin

Multi Rating <= 5.0.6 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

4 May, 2023

Plugin

Progress Bar <= 2.2.1 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

24 April, 2023

Plugin

Verified Reviews (Avis Vérifiés) <= 2.3.14 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 April, 2023

Plugin

Live Chat by Formilla – Real-time Chat & Chatbots Plugin <= 1.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

19 April, 2023

Plugin

Ebook Store <= 5.775 Broken Authentication vulnerability

+7.5 AXP

7.5

19 April, 2023

Plugin

Ebook Store <= 5.775 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

19 April, 2023

Plugin

Subscribers – Free Web Push Notifications <= 1.5.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

19 April, 2023

Plugin

Category Specific RSS feed Subscription <= v2.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

19 April, 2023

Plugin

Video Grid <= 1.21 Cross Site Scripting (XSS) vulnerability

+7.1 AXP

7.1

18 April, 2023

Plugin

Optima Express + MarketBoost IDX Plugin <= 7.3.0 Cross Site Scripting (XSS)

+0 AXP

5.9

14 April, 2023

Plugin

Simple Popup Images <= 1.8.6 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

13 April, 2023

Plugin

Landing Page Builder – Free Landing Page Templates <= 3.1.9.9 Local File Inclusion vulnerability

+6.8 AXP

6.8

13 April, 2023

Plugin

Comments Ratings <= 1.1.6 Cross Site Request Forgery (CSRF) vulnerability

+4.3 AXP

4.3

7 April, 2023

Plugin

Tiny carousel horizontal slider plus <= 3.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

6 April, 2023

Plugin

Libsyn Publisher Hub <= 1.3.2 Sensitive Data Exposure vulnerability

+10.6 AXP

5.3

4 April, 2023

Plugin

affiliate-toolkit – WordPress Affiliate Plugin <= 3.3.3 toolkit plugin <= 3.3.3 Cross Site Scripting (XSS) vulnerability

+5.9 AXP

5.9

30 March, 2023

Plugin

Social Proof (Testimonial) Slider <= 2.2.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

29 March, 2023

Plugin

Full Width Banner Slider Wp <= 1.1.7 Reflected CrossSite Scripting (XSS) vulnerability

+7.1 AXP

7.1

28 March, 2023

Plugin

Continuous Image Carousel With Lightbox <= 1.0.15 Reflected CrossSite Scripting (XSS) vulnerability

+7.1 AXP

7.1

27 March, 2023

Plugin

Userlike – WordPress Live Chat plugin <= 2.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 March, 2023

Plugin

Lazy Social Comments <= 2.0.4 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 March, 2023

Plugin

Disqus Conditional Load <= 11.1.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

21 March, 2023

Plugin

Vertical scroll recent post <= 14.0 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

21 March, 2023

Plugin

Kanban Boards for WordPress <= 2.5.21 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 March, 2023

Plugin

WP Content Filter – Censor All Offensive Content From Your Site <= 3.0.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 March, 2023

Plugin

TreePress – Easy Family Trees & Ancestor Profiles <= 2.0.22 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 March, 2023

Plugin

Surbma | GDPR Proof Cookie Consent & Notice Bar <= 17.5.3 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

17 March, 2023

Plugin

Hotel Booking Lite <= 4.6.0 Cross Site Request Forgery (CSRF) vulnerability

+2.15 AXP

4.3

16 March, 2023

Plugin

Yandex.News Feed by Teplitsa <= 1.12.5 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

14 March, 2023

Plugin

Daily Prayer Time <= 2023.03.08 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

8 March, 2023

Plugin

Daily Prayer Time <= 2023.05.04 Cross Site Scripting (XSS) vulnerability

+4.88 AXP

6.5

8 March, 2023

Plugin

Event Espresso 4 Decaf <= 4.10.44.decaf Bypass vulnerability

+3.7 AXP

3.7

5 March, 2023

Plugin

Leyka <= 3.29.2 Cross Site Scripting (XSS) vulnerability

+14.2 AXP

7.1

3 March, 2023

Plugin

Leyka <= 3.29.2 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

3 March, 2023

Plugin

Simple Slug Translate <= 2.7.2 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

27 February, 2023

Plugin

Simple YouTube Responsive <= 2.5 Cross Site Scripting (XSS) vulnerability

+4.88 AXP

6.5

24 February, 2023

Plugin

Jobs for WordPress <= 2.5.10.2 Cross Site Scripting (XSS)

+0 AXP

5.9

21 February, 2023

Plugin

CP Multi View Event Calendar <= 1.4.13 Broken Access Control vulnerability

+3.8 AXP

3.8

20 February, 2023

Plugin

Video Gallery – YouTube Gallery <= 1.7.6 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 February, 2023

Plugin

Books Gallery <= 4.4.8 Cross Site Request Forgery (CSRF) vulnerability

+4.3 AXP

4.3

20 February, 2023

Plugin

Protected Posts Logout Button <= 1.4.5 Broken Access Control vulnerability

+13 AXP

6.5

20 February, 2023

Plugin

Protected Posts Logout Button <= 1.4.5 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 February, 2023

Plugin

Olevmedia Shortcodes <= 1.1.9 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

15 February, 2023

Plugin

WP Post Rating <= 2.5 Vote Manipulation Vulnerability

+5.3 AXP

5.3

15 February, 2023

Plugin

WordPress Email Marketing Plugin – WP Email Capture <= 3.9.3 Cross Site Request Forgery (CSRF) vulnerability

+4.3 AXP

4.3

15 February, 2023

Plugin

WordPress Email Marketing Plugin – WP Email Capture <= 3.9.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

15 February, 2023

Plugin

Inline Tweet Sharer – Twitter Sharing Plugin <= 2.5.3 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

15 February, 2023

Plugin

WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) <= 7.5.14 Cross Site Request Forgery (CSRF) vulnerability

+8.6 AXP

4.3

15 February, 2023

Plugin

WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) <= 7.5.14 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

15 February, 2023

Plugin

Interactive Geo Maps <= 1.5.8 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

15 February, 2023

Plugin

Quick Paypal Payments <= 5.7.25 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

15 February, 2023

Plugin

Quick Contact Form <= 8.0.3.1 Cross Site Scripting (XSS)

+0 AXP

5.9

15 February, 2023

Plugin

Podlove Subscribe button <= 1.3.7 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

15 February, 2023

Plugin

Podlove Subscribe button <= 1.3.7 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

15 February, 2023

Plugin

Podlove Podcast Publisher <= 3.8.3 Cross Site Request Forgery (CSRF) vulnerability

+2.15 AXP

4.3

15 February, 2023

Plugin

Archivist – Custom Archive Templates <= 1.7.4 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

15 February, 2023

Plugin

Archivist – Custom Archive Templates <= 1.7.4 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

15 February, 2023

Plugin

Click to Call or Chat Buttons <= 1.4.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

15 February, 2023

Plugin

Quick Paypal Payments <= 5.7.25 Cross Site Scripting (XSS)

+7.1 AXP

7.1

14 February, 2023

Plugin

Quick Paypal Payments <= 5.7.25 Broken Access Control

+7.5 AXP

7.5

14 February, 2023

Plugin

Quick Paypal Payments <= 5.7.25 Cross Site Scripting (XSS)

+0 AXP

5.9

14 February, 2023

Plugin

Twitch Player <= 2.1.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

13 February, 2023

Plugin

Auto Hide Admin Bar <= 1.6.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

7 February, 2023

Plugin

Quick Contact Form <= 8.0.3.1 Broken Access Control

+5.3 AXP

6.5

6 February, 2023

Plugin

Quick Contact Form <= 8.0.3.1 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

6 February, 2023

Plugin

Chained Quiz <= 1.3.2.5 Cross Site Scripting (XSS)

+0 AXP

5.9

6 February, 2023

Plugin

Watu Quiz <= 3.3.8 Cross Site Scripting (XSS)

+0 AXP

5.9

3 February, 2023

Plugin

WebinarIgnition <= 2.14.2 Cross Site Scripting (XSS)

+0 AXP

5.9

3 February, 2023

Plugin

Podlove Podcast Publisher <= 3.8.2 Cross Site Scripting (XSS)

+0 AXP

5.9

3 February, 2023

Plugin

Pinpoint Booking System <= 2.9.9.2.8 Cross Site Scripting (XSS)

+0 AXP

5.9

2 February, 2023

Plugin

VikBooking Hotel Booking Engine & PMS <= 1.5.11 Cross Site Scripting (XSS)

+0 AXP

5.9

27 January, 2023

Plugin

Booking calendar, Appointment Booking System <= 3.2.3 Bypass vulnerability

+3.7 AXP

3.7

27 January, 2023

Plugin

Booking calendar, Appointment Booking System <= 3.2.3 Cross Site Scripting (XSS)

+5.9 AXP

5.9

27 January, 2023

Plugin

Booking calendar, Appointment Booking System <= 3.2.3 Broken Access Control

+5 AXP

5.0

27 January, 2023

Plugin

Booking calendar, Appointment Booking System <= 3.2.3 Cross Site Request Forgery (CSRF)

+4.3 AXP

5.4

27 January, 2023

Plugin

Organization chart <= 1.4.4 Cross Site Scripting (XSS)

+0 AXP

5.9

27 January, 2023

Plugin

Organization chart <= 1.4.4 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

27 January, 2023

Plugin

Namaste! LMS <= 2.5.9.1 Cross Site Scripting (XSS)

+0 AXP

5.9

27 January, 2023

Plugin

YouTube Embed, Playlist and Popup by WpDevArt <= 2.6.3 Cross Site Scripting (XSS)

+0 AXP

5.9

23 January, 2023

Plugin

Image and Video Lightbox, Image PopUp <= 2.1.5 Cross Site Scripting (XSS)

+0 AXP

5.9

23 January, 2023

Plugin

VikRentCar <= 1.3.0 Cross Site Scripting (XSS)

+0 AXP

5.9

20 January, 2023

Plugin

MailOptin <= 1.2.54.0 Cross Site Scripting (XSS)

+0 AXP

5.9

20 January, 2023

Plugin

Social Like Box and Page by WpDevArt <= 0.8.39 Cross Site Scripting (XSS)

+0 AXP

5.9

20 January, 2023

Plugin

RegistrationMagic <= 5.1.9.2 Arbitrary Price Change

+7.5 AXP

7.5

20 January, 2023

Plugin

RegistrationMagic <= 5.1.9.2 Content Injection

+5.3 AXP

5.3

20 January, 2023

Plugin

Quick Event Manager <= 9.7.4 Broken Access Control

+5.3 AXP

5.3

20 January, 2023

Plugin

Quick Event Manager <= 9.7.4 Cross Site Request Forgery (CSRF)

+4.3 AXP

5.4

20 January, 2023

Plugin

Quick Event Manager <= 9.7.4 Cross Site Scripting (XSS)

+7.1 AXP

7.1

20 January, 2023

Plugin

My Tickets <= 1.9.11 Payment Bypass Vulnerability

+7.5 AXP

7.5

20 January, 2023

Plugin

Quiz Maker <= 6.3.9.4 Content Spoofing

+3.7 AXP

3.7

20 January, 2023

Plugin

Responsive Vertical Icon Menu <= 1.5.8 Cross Site Request Forgery (CSRF) Leading To Settings Change Vulnerability

+5.4 AXP

5.4

20 January, 2023

Plugin

WP Time Slots Booking Form <= 1.1.82 Broken Access Control vulnerability

+4.7 AXP

4.7

20 January, 2023

Plugin

Category Specific RSS feed Subscription <= v2.1 Cross Site Request Forgery (CSRF) vulnerability

+4.3 AXP

4.3

20 January, 2023

Plugin

WP eBay Product Feeds <= 3.3.1 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

20 January, 2023

Plugin

WP Flipclock <= 1.7.4 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

20 January, 2023

Plugin

Very Simple Google Maps <= 2.8.4 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

20 January, 2023

Plugin

Coming Soon by Supsystic <= 1.7.12 Cross Site Request Forgery (CSRF) vulnerability

+3.1 AXP

4.3

19 January, 2023

Plugin

Page Loading Effects <= 2.0.0 Cross Site Scripting (XSS) vulnerability

+0 AXP

5.9

19 January, 2023

Let us know if we have missed a vulnerability reported elsewhere

Report arrow right Close

Thank you for contributing!

Successfully submit vulnerabilities and receive an invite to our Alliance platform.

Learn more arrow right Close