About Alliance Leaderboard Vulnerability database WordPress security
Login

rezaduty

0
0
0
0
Alliance XP
107
Contributions
28
Contributions 28
Achievements Soon

Report WordPress vulnerabilities, earn prizes and become an Alliance member!

Join Patchstack Alliance

Plugin

File Manager <= 5.2.7 PHP Object Injection vulnerability

+0 AXP

5.5

28 April, 2023

Plugin

Popup Maker <= 1.17.1 Unauth Access to debug log

+31.8 AXP

5.3

14 March, 2023

Plugin

LOGIN AND REGISTRATION ATTEMPTS LIMIT <= 2.1 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

14 March, 2023

Plugin

WP Basic Elements <= 5.2.15 Cross Site Request Forgery (CSRF)

+0 AXP

5.4

14 March, 2023

Plugin

Chronoforms <= 7.0.9 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

14 March, 2023

Plugin

xili-tidy-tags <= 1.12.03 tidytags plugin <= 1.12.03 Cross Site Request Forgery (CSRF)

+5.4 AXP

5.4

14 March, 2023

Plugin

WP-Advanced-Search <= 3.3.8 AdvancedSearch plugin <= 3.3.8 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

14 March, 2023

Plugin

Store Locator <= 3.98.7 Cross Site Request Forgery (CSRF)

+5.4 AXP

5.4

14 March, 2023

Plugin

Coming Soon Landing Page and Maintenance Mode WordPress Plugin <= 2.2.0 Broken Access Control

+5.3 AXP

5.3

14 March, 2023

Plugin

clickfunnels <= 3.1.1 Cross Site Request Forgery (CSRF)

+10.8 AXP

5.4

2 March, 2023

Plugin

Multiple Page Generator Plugin – MPG <= 3.3.9 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 February, 2023

Plugin

WP Dynamic Keywords Injector <= 2.3.15 Cross Site Request Forgery (CSRF)

+5.4 AXP

5.4

20 February, 2023

Plugin

CSS JS Manager <= 2.4.49 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 February, 2023

Plugin

WordPress Stripe Donation and Payment Plugin <= 3.1.5 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 February, 2023

Plugin

My Tickets <= 1.9.10 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

14 February, 2023

Plugin

Slider by Supsystic <= 1.8.7 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

7 February, 2023

Plugin

IP Vault – WP Firewall <= 1.1 Cross Site Scripting (XSS)

+0 AXP

5.9

2 February, 2023

Plugin

Multi Rating <= 5.0.5 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

2 February, 2023

Plugin

DH – Anti AdBlocker <= 36 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

27 January, 2023

Plugin

WP Google Maps <= 9.0.15 Directory Traversal

+0 AXP

4.9

20 January, 2023

Plugin

Participants Database <= 2.4.5 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 January, 2023

Plugin

ipBlockList <= 1.0 Cross Site Request Forgery (CSRF)

+0 AXP

5.4

13 January, 2023

Plugin

Logaster Logo Generator <= 1.3 Cross Site Request Forgery (CSRF) vulnerability

+4.3 AXP

4.3

4 January, 2023

Plugin

My Calendar <= 3.3.24.1 Cross Site Request Forgery (CSRF) vulnerability

+5.4 AXP

5.4

4 January, 2023

Plugin

BruteBank – WP Security & Firewall < 1.9 WP Security & Firewall Plugin < 1.9 Settings Update via CSRF Vulnerability

4.3

28 December, 2022

Plugin

Optimize images ALT Text (alt tag) & names for SEO using AI < 2.0.8 Settings Update via CSRF vulnerability

4.3

28 December, 2022

Plugin

Tickera < 3.5.1.0 Plugin Data Deletion via CSRF vulnerability

4.3

26 December, 2022

Plugin

WP CSV to Database <= 2.6 CrossSite Request Forgery (CSRF) vulnerability

+3.1 AXP

3.1

15 December, 2022

Let us know if we have missed a vulnerability reported elsewhere

Report arrow right Close

Thank you for contributing!

Successfully submit vulnerabilities and receive an invite to our Alliance platform.

Learn more arrow right Close