Bonds

12267.68

XP

452

Reports

87

Reports, last 90 days

#6

18 Nov, 2025

Lvl 10

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
JetElements For Elementor<= 2.7.12 Cross Site Scripting (XSS)	45.7	6.5	No date
WP Gravity Forms Zoho CRM and Bigin<= 1.2.8 Open Redirection	7.05	4.7	No date
Stockie Extra<= 1.2.11 Cross Site Request Forgery (CSRF)	0.54	4.3	No date
WP Gravity Forms HubSpot<= 1.2.5 Open Redirection	7.05	4.7	Aug 24, 2025
FoodBook<= 4.7.6 Sensitive Data Exposure	10.6	5.3	Aug 24, 2025
WooEvents<= 4.1.7 Broken Access Control	10.6	5.3	Aug 24, 2025
Grand Conference Theme Custom Post Type< 2.6.4 Broken Access Control	5.4	5.4	Apr 13, 2025
BM Content Builder< 3.16.3.3 Arbitrary File Deletion	17.33	7.7	Jul 27, 2025
DentiCare< 1.4.3 PHP Object Injection	39.2	9.8	May 25, 2025
Goldenblatt< 1.3.0 PHP Object Injection	39.2	9.8	Aug 24, 2025
WorkScout-Core< 1.7.06 Cross Site Scripting (XSS)	14.2	7.1	Aug 24, 2025
Goodlayers Core< 2.1.7 Privilege Escalation	19.8	8.8	Aug 24, 2025
Addison< 1.4.8 PHP Object Injection	39.2	9.8	Aug 24, 2025
Javo Core<= 3.0.0.266 Broken Access Control	10.6	5.3	Jul 27, 2025
DriCub<= 2.9 Broken Access Control	10.6	5.3	Jul 27, 2025
DriCub<= 2.9 Server Side Request Forgery (SSRF)	10.8	5.4	Jul 27, 2025
WP Gravity Forms Keap/Infusionsoft<= 1.2.5 Open Redirection	N/A	4.7	Jul 27, 2025
CouponXxL<= 4.5.0 Cross Site Request Forgery (CSRF)	4.4	8.8	Jul 28, 2025
WorkScout-Core< 1.7.06 Cross Site Request Forgery (CSRF)	4.4	8.8	Aug 24, 2025
ShoppyStore<= 3.7.16 Local File Inclusion	32.4	8.1	May 4, 2025
Autusin<= 2.8.5 Local File Inclusion	32.4	8.1	May 4, 2025
Juno<= 2.25 Local File Inclusion	32.4	8.1	Jun 8, 2025
Wine House<= 3.12 Local File Inclusion	32.4	8.1	Jun 10, 2025
Accalia<= 1.5.3 Local File Inclusion	24.3	8.1	May 25, 2025
Chrimson<= 2.2 Local File Inclusion	24.3	8.1	May 11, 2025
ProDent<= 1.5.9 Local File Inclusion	32.4	8.1	May 11, 2025
AlphaColor<= 1.4.11.1 Local File Inclusion	32.4	8.1	May 11, 2025
Drone Media<= 2.2.0 Local File Inclusion	32.4	8.1	May 11, 2025
Booklovers<= 2.13 Local File Inclusion	32.4	8.1	May 11, 2025
Anesta<= 1.2.1 Local File Inclusion	32.4	8.1	May 11, 2025
ProRange<= 2.3 Local File Inclusion	32.4	8.1	May 11, 2025
AI ANN<= 1.1.0 Local File Inclusion	32.4	8.1	May 11, 2025
HotLock<= 1.3.9 Local File Inclusion	32.4	8.1	May 11, 2025
Fortunio<= 2.3 Local File Inclusion	32.4	8.1	May 11, 2025
Gutentype<= 2.1.11 Local File Inclusion	32.4	8.1	May 11, 2025
Uxper Booking<= 1.3.3 SQL Injection	17	8.5	Jun 8, 2025
Spirit Framework<= 1.2.13 Local File Inclusion	15	7.5	Jun 10, 2025
Woo Hoo<= 1.25 Local File Inclusion	40.5	8.1	Jul 31, 2025
Aromatica<= 1.8 Local File Inclusion	40.5	8.1	Jul 31, 2025
Spock<= 1.17 Local File Inclusion	40.5	8.1	Jul 31, 2025
777<= 1.3 Local File Inclusion	40.5	8.1	Jul 31, 2025
Lione<= 1.16 Local File Inclusion	40.5	8.1	Jul 31, 2025
Ziston< 1.4.5 Local File Inclusion	16.2	8.1	Jul 31, 2025
Indutri< 1.3.0 Local File Inclusion	16.2	8.1	Jul 31, 2025
Nest Addons<= 1.6.3 SQL Injection	37.2	9.3	Jul 28, 2025
ThemeREX Addons<= 2.36.1.1 PHP Object Injection	117.6	9.8	Jul 28, 2025
Pin WP< 7.2 Arbitrary File Upload	19.8	9.9	May 11, 2025
Advance Seat Reservation Management for WooCommerce<= 3.1 SQL Injection	37.2	9.3	Jul 27, 2025
Golo<= 1.7.1 Cross Site Scripting (XSS)	14.2	7.1	Jul 27, 2025
Javo Core<= 3.0.0.529 Arbitrary Content Deletion	15	7.5	Jul 27, 2025
Nuss<= 1.3.3 Local File Inclusion	32.4	8.1	Jun 8, 2025
Neptunus<= 1.0.11 Local File Inclusion	40.5	8.1	Jul 23, 2025
HeartStar<= 1.0.14 Local File Inclusion	40.5	8.1	Jul 23, 2025
Cerebrum<= 1.12 Local File Inclusion	40.5	8.1	Jul 23, 2025
Stallion<= 1.17 Local File Inclusion	40.5	8.1	Jul 23, 2025
Heart<= 1.8 Local File Inclusion	40.5	8.1	Jul 23, 2025
Pantry<= 1.4 Local File Inclusion	40.5	8.1	Jul 23, 2025
FitFlex<= 1.6 Local File Inclusion	40.5	8.1	Jul 23, 2025
Palatio<= 1.6 Local File Inclusion	40.5	8.1	Jul 23, 2025
Prisma<= 1.10 Local File Inclusion	40.5	8.1	Jul 23, 2025
Anubis<= 1.25 Local File Inclusion	40.5	8.1	Jul 23, 2025
The Gig<= 1.18.0 Local File Inclusion	40.5	8.1	Jul 23, 2025
Lunna<= 1.15 Local File Inclusion	40.5	8.1	Jul 23, 2025
Catamaran<= 1.15 Local File Inclusion	40.5	8.1	Jul 23, 2025
Tacticool<= 1.0.13 Local File Inclusion	40.5	8.1	Jul 23, 2025
Organic Beauty<= 1.4.6 PHP Object Injection	39.2	9.8	Jun 8, 2025
Kitring<= 2.8 Local File Inclusion	32.4	8.1	Jun 10, 2025
ThemeMakers Visual Content Composer<= 1.5.8 PHP Object Injection	39.2	9.8	May 25, 2025
CouponXxL<= 3.0.0 Privilege Escalation	58.8	9.8	Jul 20, 2025
Basil<= 1.3.12 Local File Inclusion	40.5	8.1	Jul 20, 2025
Fabric<= 1.5.0 Local File Inclusion	40.5	8.1	Jul 20, 2025
Dwell<= 1.7.0 Local File Inclusion	40.5	8.1	Jul 20, 2025
Agricola<= 1.1.0 Local File Inclusion	40.5	8.1	Jul 20, 2025
IPharm<= 1.2.3 Local File Inclusion	40.5	8.1	Jul 20, 2025
Tripster<= 1.0.10 Local File Inclusion	40.5	8.1	Jul 20, 2025
Soleil<= 1.17 Local File Inclusion	40.5	8.1	Jul 20, 2025
Panda<= 1.21 Local File Inclusion	40.5	8.1	Jul 20, 2025
Rare Radio<= 1.0.15.1 Local File Inclusion	40.5	8.1	Jul 20, 2025
W&D<= 1.0 Local File Inclusion	40.5	8.1	Jul 20, 2025
MaxCube<= 1.3.1 Local File Inclusion	40.5	8.1	Jul 20, 2025
OnLeash<= 1.5.2 Local File Inclusion	40.5	8.1	Jul 20, 2025
Fabrica<= 1.8.1 Local File Inclusion	40.5	8.1	Jul 20, 2025
Winger<= 1.0.16 Local File Inclusion	40.5	8.1	Jul 20, 2025
BugsPatrol<= 1.5.0 PHP Object Injection	29.4	9.8	Jul 20, 2025
DJ Rainflow<= 1.3.13 Local File Inclusion	40.5	8.1	Jul 20, 2025
DetailX<= 1.10.0 Local File Inclusion	40.5	8.1	Jul 20, 2025
White Rabbit<= 1.5.2 PHP Object Injection	29.4	9.8	Jul 20, 2025
smart SEO<= 2.12 Local File Inclusion	40.5	8.1	Jul 20, 2025
Pubzinne<= 1.0.12 Local File Inclusion	40.5	8.1	Jul 20, 2025
Kicker<= 2.2.0 Local File Inclusion	40.5	8.1	Jul 20, 2025
Blog Designer PRO<= 3.4.7 Local File Inclusion	22.5	7.5	Aug 7, 2024
School Management<= 1.93.1 (02-07-2025) Arbitrary File Upload	59.4	9.9	Jul 20, 2025
Eventer<= 3.9.6 Content Injection	13	6.5	Apr 19, 2025
BeeTeam368 Extensions<= 1.9.4 Local File Inclusion	40	10	Jun 5, 2025
RT-Theme 18 \| Extensions<= 2.4 Local File Inclusion	45	7.5	Feb 16, 2025
VidMov<= 1.9.4 Local File Inclusion	32.4	8.1	Jun 5, 2025
Medizin< 1.9.7 Local File Inclusion	32.4	8.1	Jun 10, 2025
Yogi< 2.9.3 PHP Object Injection	17.6	8.8	Jun 5, 2025
Hillter<= 3.0.7 PHP Object Injection	17.6	8.8	Jun 5, 2025
Noisa<= 2.6.0 PHP Object Injection	17.6	8.8	Jun 5, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending