Skalucy

Say thanks

1,273.02

XP

217

Reports

11

Reports, last 90 days

#9

7 Feb, 2026

🇻🇳

Lvl 4

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Contact Manager<= 9.1 PHP Object Injection	17.6	8.8	Nov 21, 2025
TopperPack – Complete Elementor Addons, Theme & CPT Builder<= 1.2.1 Local File Inclusion	15	7.5	Nov 21, 2025
Export Media URLs<= 2.2 Cross Site Scripting (XSS)	14.2	7.1	Nov 21, 2025
NPS computy<= 2.8.2 Cross Site Scripting (XSS)	7.1	7.1	Nov 21, 2025
ID Arrays<= 2.1.2 Cross Site Scripting (XSS)	7.1	7.1	Nov 19, 2025
Widget Logic Visual<= 1.52 Cross Site Scripting (XSS)	7.1	7.1	Nov 17, 2025
FeedWordPress Advanced Filters<= 0.6.2 Cross Site Scripting (XSS)	7.1	7.1	Nov 17, 2025
Membee Login<= 2.3.6 Cross Site Scripting (XSS)	7.1	7.1	Nov 16, 2025
eDS Responsive Menu<= 1.2 Cross Site Scripting (XSS)	7.1	7.1	Nov 16, 2025
Asynchronous Javascript<= 1.3.5 Cross Site Scripting (XSS)	7.1	7.1	Nov 16, 2025
Mopinion Feedback Form<= 1.1.1 Cross Site Scripting (XSS)	7.1	7.1	Nov 16, 2025
iSape<= 0.72 Cross Site Scripting (XSS)	7.1	7.1	Nov 15, 2025
افزونه پیامک حرفه ای فراز اس ام اس<= 2.7.3 Cross Site Scripting (XSS)	14.2	7.1	Nov 15, 2025
amr cron manager<= 2.3 Cross Site Scripting (XSS)	7.1	7.1	Nov 14, 2025
TableOn<= 1.0.4.2 Cross Site Scripting (XSS)	32.66	7.1	Oct 31, 2025
MemberPress Discord Addon<= 1.1.4 Cross Site Scripting (XSS)	7.1	7.1	Oct 31, 2025
Easy Theme Options<= 1.0 Cross Site Scripting (XSS)	7.1	7.1	Oct 31, 2025
iRobots.txt SEO<= 1.1.2 Cross Site Scripting (XSS)	7.1	7.1	Oct 31, 2025
Ravpage<= 2.33 Cross Site Scripting (XSS)	7.1	7.1	Oct 31, 2025
Table of Contents Creator<= 1.6.4.1 Cross Site Scripting (XSS)	7.1	7.1	Oct 30, 2025
My Post Order<= 1.2.1.1 Cross Site Scripting (XSS)	10.65	7.1	Oct 30, 2025
My auctions allegro<= 3.6.32 Cross Site Scripting (XSS)	10.65	7.1	Oct 29, 2025
ShoutOut<= 4.0.2 Cross Site Scripting (XSS)	N/A	7.1	Oct 28, 2025
bidorbuy Store Integrator<= 2.12.0 Cross Site Scripting (XSS)	7.1	7.1	Oct 27, 2025
WP Mail<= 1.3 Cross Site Scripting (XSS)	10.65	7.1	Oct 26, 2025
Dooodl<= 2.3.0 Cross Site Scripting (XSS)	7.1	7.1	Oct 26, 2025
Eli's WordCents adSense Widget with Analytics<= 1.3.03.27 Cross Site Scripting (XSS)	7.1	7.1	Oct 23, 2025
WP Simple Redirect<= 1.1 Cross Site Scripting (XSS)	7.1	7.1	Oct 22, 2025
Taskbuilder<= 4.0.9 Cross Site Scripting (XSS)	16.33	7.1	Oct 23, 2025
eHive Search<= 2.5.0 Cross Site Scripting (XSS)	7.1	7.1	Oct 22, 2025
Newsletters<= 4.11 PHP Object Injection	39.2	9.8	Oct 7, 2025
Custom Style<= 1.0 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 18, 2025
Noindex by Path<= 1.0 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 18, 2025
Custom Post Status<= 1.1.0 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 19, 2025
Recent Posts From Each Category<= 1.4 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 19, 2025
Social Profilr<= 1.0 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 19, 2025
SensitiveTagCloud<= 1.4.1 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 19, 2025
WP-EasyArchives<= 3.1.2 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 19, 2025
Simple Archive Generator<= 5.2 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 22, 2025
Simple XML Sitemap<= 1.3 Cross Site Request Forgery (CSRF)	0.44	7.1	Nov 30, 2025
Evergreen Post Tweeter<= 1.8.9 Cross Site Request Forgery (CSRF)	0.44	7.1	Nov 18, 2025
Simple Folio<= 1.1.0 Cross Site Request Forgery (CSRF)	N/A	4.3	Nov 17, 2025
Rencontre<= 3.13.7 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 31, 2025
WP sIFR<= 0.6.8.1 Cross Site Request Forgery (CSRF)	0.44	7.1	Oct 30, 2025
Hostel<= 1.1.5.9 Cross Site Scripting (XSS)	N/A	7.1	Oct 28, 2025
ANAC XML Bandi di Gara<= 7.7 Cross Site Scripting (XSS)	10.65	7.1	Oct 25, 2025
FV Antispam<= 2.7 Cross Site Scripting (XSS)	14.2	7.1	Oct 19, 2025
Sendle Shipping<= 6.02 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 27, 2025
Floating Window Music Player<= 3.4.2 Cross Site Request Forgery (CSRF)	1.78	7.1	Aug 27, 2025
XmasB Quotes<= 1.6.1 Cross Site Scripting (XSS)	7.1	7.1	May 30, 2025
Theme Switcher Reloaded<= 1.1 Cross Site Scripting (XSS)	7.1	7.1	May 30, 2025
NextGEN Gallery Search<= 2.12 Cross Site Scripting (XSS)	7.1	7.1	May 30, 2025
e-Boekhouden.nl<= 1.9.3 Cross Site Scripting (XSS)	7.1	7.1	May 29, 2025
Comments Capcha Box<= 1.1 Cross Site Scripting (XSS)	7.1	7.1	May 29, 2025
WP-Database-Optimizer-Tools<= 0.2 Cross Site Request Forgery (CSRF)	N/A	5.4	May 30, 2025
Import CDN-Remote Images<= 2.1.2 Cross Site Request Forgery (CSRF)	1.78	7.1	Jun 7, 2025
Pricing Table builder<= 1.5.3 Cross Site Request Forgery (CSRF)	0.44	7.1	May 30, 2025
WPShapere - WordPress admin theme<= 1.4.1 Cross Site Request Forgery (CSRF)	1.78	7.1	May 29, 2025
WP GDPR Cookie Consent<= 1.0.0 Cross Site Request Forgery (CSRF)	1.78	7.1	May 29, 2025
Relocate Upload<= 0.24.1 Cross Site Request Forgery (CSRF)	1.78	7.1	May 27, 2025
WP Optimizer<= 2.3.8 Cross Site Request Forgery (CSRF)	2.4	9.6	May 23, 2025
Twitch TV Embed Suite<= 2.1.0 Cross Site Request Forgery (CSRF)	1.78	7.1	May 22, 2025
Image Slider With Description<= 9.2 Cross Site Request Forgery (CSRF)	1.78	7.1	May 19, 2025
WP Permalink Translator<= 1.7.6 Cross Site Request Forgery (CSRF)	3.55	7.1	May 27, 2025
Slickstream<= 2.0.3 Cross Site Request Forgery (CSRF)	2.15	4.3	May 26, 2025
Image Cleanup<= 1.9.2 Cross Site Request Forgery (CSRF)	2.15	4.3	May 26, 2025
Additional Order Filters for WooCommerce<= 1.22 Cross Site Request Forgery (CSRF)	3.55	7.1	May 24, 2025
Dropify<= 4.7.2 Cross Site Scripting (XSS)	14.2	7.1	May 25, 2025
WP Inventory Manager<= 2.3.4 Cross Site Request Forgery (CSRF)	2.15	4.3	May 7, 2025
Logo Manager For Samandehi<= 0.5 Cross Site Request Forgery (CSRF)	1.78	7.1	May 21, 2025
Storyform<= 0.6.14 Cross Site Scripting (XSS)	7.1	7.1	May 19, 2025
Post Author<= 1.1.1 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 21, 2025
YouTube Simple Gallery<= 2.2.0 Cross Site Scripting (XSS)	4.88	6.5	Apr 22, 2025
WP Maintenance Mode & Site Under Construction<= 4.3 Cross Site Request Forgery (CSRF)	2.15	4.3	May 29, 2025
Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant<= 4.1.1 Cross Site Request Forgery (CSRF)	2.15	4.3	May 27, 2025
Import Export For WooCommerce<= 1.6.2 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 17, 2025
Sidebar Manager Light<= 1.18 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 29, 2025
Modern Polls<= 1.0.10 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 21, 2025
Print Science Designer<= 1.3.155 Cross Site Request Forgery (CSRF)	3.55	7.1	Apr 15, 2025
WPVN<= 0.7.8 Cross Site Request Forgery (CSRF)	N/A	4.3	Apr 12, 2025
illow – Cookies Consent<= 0.2.0 Cross Site Request Forgery (CSRF)	2.15	4.3	Apr 3, 2025
Bulk Term Editor<= 1.1.4 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 11, 2025
Ever Accounting<= 2.1.5 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 26, 2025
InPost Gallery<= 2.1.4.3 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 13, 2025
Mobile Smart<= v1.3.16 Cross Site Scripting (XSS)	14.2	7.1	Mar 27, 2025
Easyfonts<= 1.1.2 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 27, 2025
Customize Login Page<= 1.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 28, 2025
Scheduled<= 1.0 Cross Site Request Forgery (CSRF)	3.55	7.1	Mar 29, 2025
FraudLabs Pro for WooCommerce<= 2.22.8 Cross Site Request Forgery (CSRF)	3.55	7.1	Feb 22, 2025
Nepali Date Utilities<= 1.0.15 Cross Site Request Forgery (CSRF)	3.55	7.1	Feb 25, 2025
Doppler Forms<= 2.5.1 Cross Site Request Forgery (CSRF)	3.55	7.1	Feb 27, 2025
JobWP<= 2.3.9 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Sequential Order Numbers for WooCommerce<= 3.6.2 Cross Site Request Forgery (CSRF)	2.15	4.3	Feb 28, 2025
Advanced All in One Admin Search by WP Spotlight<= 1.1.1 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 27, 2025
Flickr Photostream<= 3.1.8 Cross Site Scripting (XSS)	14.2	7.1	Mar 25, 2025
Snow Storm<= 1.4.6 Cross Site Scripting (XSS)	14.2	7.1	Feb 28, 2025
Widget Manager Light<= 1.18 Broken Access Control	13	6.5	Feb 27, 2025
Delete Post Revision<= 1.1 Cross Site Scripting (XSS)	14.2	7.1	Mar 21, 2025
WP Cleaner<= 1.1.5 Cross Site Scripting (XSS)	14.2	7.1	Mar 19, 2025
Pages Order<= 1.1.3 Cross Site Scripting (XSS)	14.2	7.1	Mar 19, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending