zaim

658.53

XP

97

Reports

3

Reports, last 90 days

#25

15 Dec, 2025

Lvl 3

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Wp Ultimate Review<= 2.3.6 Cross Site Scripting (XSS)	9.75	6.5	No date
Funnel Builder by FunnelKit<= 3.13.1.2 Cross Site Scripting (XSS)	9.75	6.5	No date
Analytics Germanized for Google Analytics<= 1.6.2 Cross Site Scripting (XSS)	4.88	6.5	No date
FireBox<= 3.1.0-free Cross Site Scripting (XSS)	4.88	6.5	No date
Groundhogg<= 4.2.6 Cross Site Scripting (XSS)	8.41	6.5	No date
Extensions for Leaflet Map<= 4.8 Cross Site Scripting (XSS)	4.88	6.5	No date
Memberlite Shortcodes<= 1.4.1 Cross Site Scripting (XSS)	4.88	6.5	No date
Ditty<= 3.1.58 Cross Site Scripting (XSS)	9.75	6.5	Jul 24, 2025
WPFront User Role Editor<= 4.2.3 Cross Site Scripting (XSS)	9.75	6.5	Jul 25, 2025
Uncanny Toolkit for LearnDash<= 3.7.0.3 Cross Site Scripting (XSS)	9.75	6.5	Jul 24, 2025
Geolocation IP Detection<= 5.5.0 Cross Site Scripting (XSS)	4.88	6.5	Jul 25, 2025
Participants Database<= 2.7.6.3 Cross Site Scripting (XSS)	4.88	6.5	Jul 28, 2025
Mail Subscribe List<= 2.1.10 Cross Site Scripting (XSS)	4.88	6.5	Jul 28, 2025
Search Atlas SEO<= 2.5.4 Cross Site Scripting (XSS)	4.88	6.5	Jul 28, 2025
Termageddon: Cookie Consent & Privacy Compliance<= 1.8.1 Cross Site Scripting (XSS)	4.88	6.5	Jul 29, 2025
Designil PDPA Thailand<= 2.0 Cross Site Scripting (XSS)	4.88	6.5	Jul 29, 2025
Page-list<= 5.8 Cross Site Scripting (XSS)	9.75	6.5	Jul 30, 2025
Podlove Subscribe button<= 1.3.11 Cross Site Scripting (XSS)	4.88	6.5	Jul 31, 2025
Sitekit<= 2.0 Cross Site Scripting (XSS)	4.88	6.5	Jul 31, 2025
Bitly<= 2.7.4 Cross Site Scripting (XSS)	4.88	6.5	Jul 31, 2025
LC Wizard<= 2.1.0 Cross Site Scripting (XSS)	4.88	6.5	Aug 1, 2025
PilotPress<= 2.0.36 Cross Site Scripting (XSS)	4.88	6.5	Aug 1, 2025
WP Category Dropdown<= 1.9 Cross Site Scripting (XSS)	4.88	6.5	Aug 1, 2025
xili-tidy-tags<= 1.12.06 Cross Site Scripting (XSS)	4.88	6.5	Aug 1, 2025
CubeWP<= 1.1.26 Cross Site Scripting (XSS)	4.88	6.5	Jul 28, 2025
Ibtana – Ecommerce Product Addons<= 0.4.7.4 Cross Site Scripting (XSS)	4.88	6.5	Jun 10, 2025
Pie Calendar<= 1.2.8 Cross Site Scripting (XSS)	4.88	6.5	Aug 1, 2025
PropertyHive<= 2.1.5 Cross Site Scripting (XSS)	4.88	6.5	Jul 31, 2025
MediaPress<= 1.5.9.1 Local File Inclusion	11.25	7.5	Jul 28, 2025
Cookie Notice & Consent Banner for GDPR & CCPA Compliance<= 1.7.11 Cross Site Scripting (XSS)	4.88	6.5	Jul 28, 2025
WP Delicious<= 1.8.7 Cross Site Scripting (XSS)	4.88	6.5	Jul 22, 2025
If-So Dynamic Content Personalization<= 1.9.4 Cross Site Scripting (XSS)	4.88	6.5	Jul 27, 2025
PDF for Elementor Forms + Drag And Drop Template Builder<= 6.2.0 Cross Site Scripting (XSS)	4.88	6.5	Aug 1, 2025
Simple Download Monitor<= 3.9.34 Cross Site Scripting (XSS)	4.88	6.5	Jul 25, 2025
WP Last Modified Info<= 1.9.4 Remote Code Execution (RCE)	33.3	7.4	Jul 25, 2025
Themify Icons<= 2.0.3 Cross Site Scripting (XSS)	4.88	6.5	Jul 29, 2025
Print My Blog<= 3.27.9 Cross Site Scripting (XSS)	9.75	6.5	Jul 28, 2025
News Kit Elementor Addons<= 1.3.4 Broken Access Control	5.4	5.4	Jun 12, 2025
WPAdverts<= 2.2.5 Cross Site Scripting (XSS)	4.88	6.5	Jun 11, 2025
WP Delicious<= 1.8.4 Cross Site Scripting (XSS)	4.88	6.5	Jun 8, 2025
Responsive Blocks<= 2.0.6 Cross Site Scripting (XSS)	4.88	6.5	Jun 10, 2025
ChatBot<= 6.7.3 Broken Access Control	4.3	4.3	Jun 9, 2025
Code Engine<= 0.3.2 Cross Site Scripting (XSS)	3.66	6.5	May 17, 2025
WP-Members<= 3.5.4 Cross Site Scripting (XSS)	14.63	6.5	May 18, 2025
Ultimate Blocks<= 3.3.6 Cross Site Scripting (XSS)	14.63	6.5	No date
Responsive Blocks<= 2.0.5 Cross Site Scripting (XSS)	4.88	6.5	May 20, 2025
WPAdverts<= 2.2.4 Cross Site Scripting (XSS)	4.88	6.5	May 20, 2025
Image Hover Effects Block<= 1.4.5 Cross Site Scripting (XSS)	4.88	6.5	Apr 28, 2025
SKT Blocks<= 2.2 Cross Site Scripting (XSS)	4.88	6.5	Apr 25, 2025
WPAdverts<= 2.2.3 Cross Site Scripting (XSS)	4.88	6.5	Apr 26, 2025
Ultimate Blocks<= 3.3.0 Cross Site Scripting (XSS)	14.63	6.5	May 8, 2025
Uncanny Toolkit for LearnDash<= 3.7.0.2 Cross Site Scripting (XSS)	9.75	6.5	Apr 3, 2025
CBX Map for Google Map & OpenStreetMap<= 1.1.12 Cross Site Scripting (XSS)	4.88	6.5	Mar 24, 2025
Woobox<= 1.6 Cross Site Scripting (XSS)	4.88	6.5	Mar 25, 2025
WPBakery Visual Composer WHMCS Elements<= 1.0.4.3 Cross Site Scripting (XSS)	4.88	6.5	Mar 27, 2025
Spiraclethemes Site Library<= 1.5.4 Cross Site Scripting (XSS)	4.88	6.5	Mar 27, 2025
Blockspare<= 3.2.9 Cross Site Scripting (XSS)	4.88	6.5	Apr 29, 2025
EventON<= 2.4.1 Local File Inclusion	16.88	7.5	Apr 28, 2025
Ultimate Blocks<= 3.2.9 Cross Site Scripting (XSS)	14.63	6.5	Apr 6, 2025
WPAdverts<= 2.2.2 Local File Inclusion	16.88	7.5	Mar 28, 2025
SKT Blocks<= 2.0 Cross Site Scripting (XSS)	4.88	6.5	Apr 12, 2025
Church Admin<= 5.0.23 Cross Site Scripting (XSS)	5.61	6.5	Jan 24, 2025
Responsive Blocks<= 2.0.2 Cross Site Scripting (XSS)	4.88	6.5	Mar 28, 2025
Membership For WooCommerce<= 2.8.0 Cross Site Scripting (XSS)	4.88	6.5	Mar 24, 2025
Real Testimonials<= 3.1.6 Cross Site Scripting (XSS)	9.75	6.5	Jan 21, 2025
Uncanny Toolkit for LearnDash<= 3.7.0.1 Cross Site Scripting (XSS)	9.75	6.5	Jan 19, 2025
SKT Skill Bar<= 2.3 Cross Site Scripting (XSS)	4.88	6.5	Mar 26, 2025
SKT Blocks<= 1.8 Cross Site Scripting (XSS)	4.88	6.5	Mar 25, 2025
DSGVO Youtube<= 1.5.1 Cross Site Scripting (XSS)	4.88	6.5	Mar 24, 2025
Maps for WP<= 1.2.4 Cross Site Scripting (XSS)	4.88	6.5	Dec 21, 2024
VK Filter Search<= 2.18.3.0 Cross Site Scripting (XSS)	4.88	6.5	Jan 25, 2025
Arkhe Blocks<= 2.27.1 Cross Site Scripting (XSS)	4.88	6.5	Mar 28, 2025
SheetDB<= 1.3.4 Cross Site Scripting (XSS)	4.88	6.5	Dec 20, 2024
Ultimate Blocks<= 3.2.7 Cross Site Scripting (XSS)	14.63	6.5	Jan 21, 2025
Simplebooklet PDF Viewer and Embedder<= 1.1.1 Cross Site Scripting (XSS)	4.88	6.5	Dec 21, 2024
SecuPress Free<= 2.2.5.3 Cross Site Scripting (XSS)	9.75	6.5	Jan 20, 2025
Front End Users<= 3.2.30 Cross Site Scripting (XSS)	4.88	6.5	Dec 21, 2024
Social Warfare<= 4.5.5 Cross Site Scripting (XSS)	4.88	6.5	Jan 17, 2025
Qubely<= 1.8.12 Cross Site Scripting (XSS)	4.88	6.5	Jan 14, 2025
Product Table For WooCommerce<= 1.2.3 Cross Site Scripting (XSS)	4.88	6.5	Dec 20, 2024
Ketchup Shortcodes<= 0.1.2 Cross Site Scripting (XSS)	4.88	6.5	Dec 24, 2024
Listamester<= 2.3.4 Cross Site Scripting (XSS)	4.88	6.5	Dec 24, 2024
BookingPress<= 1.1.25 Cross Site Scripting (XSS)	4.88	6.5	Jan 17, 2025
wp-pano<= 1.17 Cross Site Scripting (XSS)	4.88	6.5	Dec 25, 2024
فرم ساز فرم افزار<= 2.0 Cross Site Scripting (XSS)	4.88	6.5	Dec 20, 2024
Donation Block For PayPal<= 2.2.0 Cross Site Scripting (XSS)	4.88	6.5	Dec 20, 2024
Huurkalender WP<= 1.5.6 Cross Site Scripting (XSS)	4.88	6.5	Dec 20, 2024
WE Blocks<= 1.3.5 Cross Site Scripting (XSS)	4.88	6.5	Dec 22, 2024
WP jQuery DataTable<= 4.0.1 Cross Site Scripting (XSS)	4.88	6.5	Dec 20, 2024

Report vulnerabilities to earn bounties and rewards!

Include pending