Alliance bounty program
About Alliance Leaderboard Vulnerability database WordPress security
Login

rezaduty

0
0
0
0
Twitter Github Website
29 November, 2022
Alliance XP
107
Contributions
28
Contributions 28
Achievements Soon

Report WordPress vulnerabilities, earn prizes and become an Alliance member!

Join Patchstack Alliance

Plugin

File Manager <= 5.2.7 PHP Object Injection vulnerability

+0 AXP

5.5

28 April, 2023

Plugin

Popup Maker <= 1.17.1 Unauth Access to debug log

+31.8 AXP

5.3

14 March, 2023

Plugin

LOGIN AND REGISTRATION ATTEMPTS LIMIT <= 2.1 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

14 March, 2023

Plugin

WP Basic Elements <= 5.2.15 Cross Site Request Forgery (CSRF)

+0 AXP

5.4

14 March, 2023

Plugin

Chronoforms <= 7.0.9 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

14 March, 2023

Plugin

xili-tidy-tags <= 1.12.03 tidytags plugin <= 1.12.03 Cross Site Request Forgery (CSRF)

+5.4 AXP

5.4

14 March, 2023

Plugin

WP-Advanced-Search <= 3.3.8 AdvancedSearch plugin <= 3.3.8 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

14 March, 2023

Plugin

Store Locator <= 3.98.7 Cross Site Request Forgery (CSRF)

+5.4 AXP

5.4

14 March, 2023

Plugin

Coming Soon Landing Page and Maintenance Mode WordPress Plugin <= 2.2.0 Broken Access Control

+5.3 AXP

5.3

14 March, 2023

Plugin

clickfunnels <= 3.1.1 Cross Site Request Forgery (CSRF)

+10.8 AXP

5.4

2 March, 2023

Plugin

Multiple Page Generator Plugin – MPG <= 3.3.9 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 February, 2023

Plugin

WP Dynamic Keywords Injector <= 2.3.15 Cross Site Request Forgery (CSRF)

+5.4 AXP

5.4

20 February, 2023

Plugin

CSS JS Manager <= 2.4.49 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 February, 2023

Plugin

WordPress Stripe Donation and Payment Plugin <= 3.1.5 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 February, 2023

Plugin

My Tickets <= 1.9.10 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

14 February, 2023

Plugin

Slider by Supsystic <= 1.8.7 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

7 February, 2023

Plugin

IP Vault – WP Firewall <= 1.1 Cross Site Scripting (XSS)

+0 AXP

5.9

2 February, 2023

Plugin

Multi Rating <= 5.0.5 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

2 February, 2023

Plugin

DH – Anti AdBlocker <= 36 Cross Site Request Forgery (CSRF)

+0 AXP

4.3

27 January, 2023

Plugin

WP Google Maps <= 9.0.15 Directory Traversal

+0 AXP

4.9

20 January, 2023

Plugin

Participants Database <= 2.4.5 Cross Site Request Forgery (CSRF)

+4.3 AXP

4.3

20 January, 2023

Plugin

ipBlockList <= 1.0 Cross Site Request Forgery (CSRF)

+0 AXP

5.4

13 January, 2023

Plugin

Logaster Logo Generator <= 1.3 Cross Site Request Forgery (CSRF) vulnerability

+4.3 AXP

4.3

4 January, 2023

Plugin

My Calendar <= 3.3.24.1 Cross Site Request Forgery (CSRF) vulnerability

+5.4 AXP

5.4

4 January, 2023

Plugin

BruteBank – WP Security & Firewall < 1.9 WP Security & Firewall Plugin < 1.9 Settings Update via CSRF Vulnerability

4.3

28 December, 2022

Plugin

Optimize images ALT Text (alt tag) & names for SEO using AI < 2.0.8 Settings Update via CSRF vulnerability

4.3

28 December, 2022

Plugin

Tickera < 3.5.1.0 Plugin Data Deletion via CSRF vulnerability

4.3

26 December, 2022

Plugin

WP CSV to Database <= 2.6 CrossSite Request Forgery (CSRF) vulnerability

+3.1 AXP

3.1

15 December, 2022

Back to top

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugins NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022 NEW

Social

DPA Privacy Policy Terms & Conditions © 2023 Patchstack

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugins NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022 NEW

Social

Let us know if we have missed a vulnerability reported elsewhere

Report arrow right Close

Thank you for contributing!

Successfully submit vulnerabilities and receive an invite to our Alliance platform.

Learn more arrow right Close