Elliot

Say thanks

172.85

XP

29

Reports

0

Reports, last 90 days

#19

28 Dec, 2025

Lvl 1

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
ClickCease Click Fraud Protection<= 3.2.7 Cross Site Request Forgery (CSRF)	2.15	4.3	Oct 25, 2023
Radio Player<= 2.0.73 Broken Access Control	13	6.5	Jul 20, 2023
Load More Anything<= 3.3.3 Broken Access Control	5.4	5.4	Aug 25, 2023
Droit Elementor Addons<= 3.1.5 Cross Site Request Forgery (CSRF)	2.15	4.3	Oct 30, 2023
Spam protection, AntiSpam, FireWall by CleanTalk<= 6.20 Cross Site Request Forgery (CSRF)	10.75	4.3	Oct 23, 2023
Button Generator – easily Button Builder<= 2.3.8 Cross Site Request Forgery (CSRF)	2.15	4.3	Aug 28, 2023
Button Generator – easily Button Builder<= 2.3.8 Broken Access Control	10.6	5.3	Aug 28, 2023
Quantity Plus Minus Button for WooCommerce by CodeAstrology<= 1.1.9 Cross Site Request Forgery (CSRF)	2.15	4.3	Aug 17, 2023
Animator<= 3.0.10 Broken Access Control	13	6.5	Jun 28, 2023
BadgeOS<= 3.7.1.6 Broken Access Control	4.3	4.3	May 29, 2023
Droit Dark Mode<= 1.1.2 Cross Site Request Forgery (CSRF)	2.15	4.3	Sep 19, 2023
YITH WooCommerce Product Add-Ons<= 4.2.0 Broken Access Control	10.6	5.3	Jul 27, 2023
Duplicate Theme<= 0.1.6 Cross Site Request Forgery (CSRF)	2.15	4.3	May 25, 2023
Tweeple<= 0.9.5 Cross Site Scripting (XSS)	14.2	7.1	Apr 18, 2023
Video Player<= 1.5.22 Cross Site Scripting (XSS)	14.2	7.1	Apr 18, 2023
Inactive Logout<= 3.2.2 Broken Access Control	5.4	5.4	Sep 18, 2023
WP Crowdfunding<= 2.1.5 Broken Access Control	4.3	4.3	Jul 31, 2023
Posts Like Dislike<= 1.1.0 Broken Access Control	10.6	5.3	Jun 27, 2023
POEditor<= 0.9.4 Cross Site Request Forgery (CSRF)	2.7	5.4	Apr 28, 2023
LuckyWP Scripts Control<= 1.2.1 Broken Access Control	5.4	5.4	Apr 4, 2023
Maintenance Switch<= 1.7.1 Cross Site Request Forgery (CSRF)	2.7	5.4	Apr 4, 2023
Simple Org Chart<= 2.3.4 Cross Site Request Forgery (CSRF)	2.15	4.3	Mar 27, 2023
WpStream<= 4.5.4 Cross Site Request Forgery (CSRF)	2.7	5.4	Jun 27, 2023
Five Star Restaurant Menu<= 2.4.6 Cross Site Request Forgery (CSRF)	2.15	4.3	Jun 30, 2023
WP Dummy Content Generator<= 2.3.0 Cross Site Request Forgery (CSRF)	2.7	5.4	Jun 30, 2023
Editorial Calendar<= 3.7.12 Insecure Direct Object References (IDOR)	4.05	5.4	May 29, 2023
WP Full Auto Tags Manager<= 2.2 Cross Site Request Forgery (CSRF)	2.15	4.3	Apr 24, 2023
ShiftController Employee Shift Scheduling<= 4.9.23 Cross Site Request Forgery (CSRF)	2.7	5.4	Mar 29, 2023
CopySafe Web Protection<= 3.13 Cross Site Scripting (XSS)	14.2	7.1	Mar 31, 2023

Report vulnerabilities to earn bounties and rewards!

Include pending