Alliance bounty program
About Alliance Leaderboard Vulnerability database WordPress security
Login

Justiice

0
0
0
0
Twitter Github Website
8 December, 2022
Justiice
Alliance XP
66.85
Contributions
21
Contributions 21
Achievements Soon

Report WordPress vulnerabilities, earn prizes and become an Alliance member!

Join Patchstack Alliance

Plugin

Duplicate Post Page Menu & Custom Post Type <= 2.3.1 Broken Access Control

+10.8 AXP

5.4

27 June, 2023

Plugin

Ajax Pagination and Infinite Scroll <= 2.0.1 Cross Site Request Forgery (CSRF) vulnerability

+2.15 AXP

4.3

30 May, 2023

Plugin

Quick Page/Post Redirect <= 5.2.3 Cross Site Scripting (XSS)

+0 AXP

5.9

12 May, 2023

Plugin

Wise Chat <= 3.1.3 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

9 May, 2023

Plugin

WP Search Analytics <= 1.4.5 Cross Site Scripting (XSS)

+0 AXP

5.9

28 April, 2023

Plugin

AJAX Thumbnail Rebuild <= 1.13 Broken Access Control vulnerability

+12.9 AXP

4.3

28 April, 2023

Plugin

WP-CORS <= 0.2.1 CORS plugin <= 0.2.1 Auth. Stored CrossSite Scripting (XSS) vulnerability

+0 AXP

5.9

28 April, 2023

Plugin

WP-dTree <= 4.4.5 dTree plugin <= 4.4.5 Cross Site Scripting (XSS)

+0 AXP

5.9

19 April, 2023

Plugin

Login Page Styler <= 6.2 Cross Site Scripting (XSS)

+0 AXP

5.9

19 April, 2023

Plugin

Flyzoo Chat <= 2.3.3 Cross Site Scripting (XSS)

+0 AXP

5.9

19 April, 2023

Plugin

Continuous announcement scroller <= 13.0 Cross Site Scripting (XSS)

+0 AXP

5.9

19 April, 2023

Plugin

Affiliate Links Lite <= 2.5 Cross Site Scripting (XSS) vulnerability

+6.5 AXP

6.5

14 April, 2023

Plugin

Spiffy Calendar <= 4.9.1 Auth. SQL Injection (SQLi) vulnerability

+8.5 AXP

8.5

7 April, 2023

Plugin

PixFields <= 0.7.0 Auth. CrossSite Scripting (XSS) vulnerability

+6.5 AXP

6.5

29 March, 2023

Plugin

Custom Options Plus <= 1.8.1 Cross Site Request Forgery (CSRF) vulnerability

+2.7 AXP

5.4

16 March, 2023

Plugin

WP Custom Fields Search <= 1.2.34 Cross Site Scripting (XSS)

+0 AXP

5.9

20 February, 2023

Plugin

UsersWP <= 1.2.3.9 CSV Injection

+5.8 AXP

5.8

20 February, 2023

Plugin

Quick Event Manager <= 9.6.4 Cross Site Scripting (XSS)

+0 AXP

5.9

14 February, 2023

Plugin

Auto Affiliate Links <= 6.3 Cross Site Request Forgery (CSRF) vulnerability

+4.6 AXP

5.4

2 February, 2023

Plugin

Media Library Categories <= 1.9.9 Cross Site Scripting (XSS)

+0 AXP

5.9

20 January, 2023

Plugin

Freesoul Deactivate Plugins – Plugin manager and cleanup <= 1.9.4.0 Content Spoofing

+3.7 AXP

3.7

16 January, 2023

Back to top

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugins NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022 NEW

Social

DPA Privacy Policy Terms & Conditions © 2023 Patchstack

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugins NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022 NEW

Social

Let us know if we have missed a vulnerability reported elsewhere

Report arrow right Close

Thank you for contributing!

Successfully submit vulnerabilities and receive an invite to our Alliance platform.

Learn more arrow right Close