NumeX

Say thanks

890.94

XP

46

Reports

7

Reports, last 90 days

#13

9 Feb, 2026

🇮🇩

Lvl 3

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
LottieFiles<= 3.0.0 Broken Access Control	14.6	7.3	Nov 23, 2025
Sync Master Sheet – Product Sync with Google Sheet for WooCommerce<= 1.1.3 Broken Access Control	7.5	7.5	Nov 21, 2025
Plugin BlueX for WooCommerce<= 3.1.4 Broken Access Control	14.6	7.3	Nov 20, 2025
Authorsy<= 1.0.6 Insecure Direct Object References (IDOR)	15	7.5	Nov 18, 2025
Shiprocket<= 2.0.8 Insecure Direct Object References (IDOR)	7.5	7.5	Nov 19, 2025
Leadpages<= 1.1.3 Broken Access Control	13	6.5	Nov 18, 2025
ConveyThis<= 269.3 Broken Access Control	13	6.5	Nov 18, 2025
WPLegalPages<= 3.5.4 Broken Access Control	15	7.5	Nov 16, 2025
NextMove Lite<= 2.23.0 Broken Access Control	17.25	7.5	Nov 15, 2025
UPI QR Code Payment Gateway for WooCommerce<= 1.5.1 Broken Access Control	29.9	6.5	Nov 14, 2025
MailerLite – WooCommerce integration<= 3.1.2 SQL Injection	74.4	9.3	Nov 4, 2025
Scalenut<= 1.1.3 Broken Access Control	7.5	7.5	Nov 4, 2025
Order Listener for WooCommerce<= 3.6.1 Broken Access Control	18.8	9.4	Oct 30, 2025
onepay Payment Gateway For WooCommerce<= 1.1.2 Other Vulnerability Type	13	6.5	Oct 23, 2025
Creator LMS<= 1.1.12 Broken Access Control	N/A	5.3	Dec 11, 2025
Accordion<= 3.0.3 Cross Site Scripting (XSS)	2.95	5.9	Dec 8, 2025
Owl Carousel WP<= 2.2.2 Cross Site Scripting (XSS)	2.95	5.9	Dec 2, 2025
AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One<= 1.1.7 Broken Access Control	3.71	4.3	Nov 1, 2025
WP Advanced PDF<= 1.1.7 Other Vulnerability Type	10.8	5.4	Oct 23, 2025
AweBooking<= 3.2.26 Sensitive Data Exposure	6.5	6.5	Oct 5, 2025
Youzify<= 1.3.6 Server Side Request Forgery (SSRF)	4.9	4.9	Nov 27, 2025
Widgets for Social Photo Feed<= 1.7.8 Broken Access Control	10.6	5.3	Nov 23, 2025
Bit Assist<= 1.5.11 Broken Access Control	12.19	5.3	Nov 19, 2025
Wbcom Designs<= 2.1.1 Broken Access Control	N/A	5.3	Nov 20, 2025
FAPI Member<= 2.2.29 Insecure Direct Object References (IDOR)	7.95	5.3	Nov 16, 2025
LA-Studio Element Kit for Elementor< 1.5.6.3 Broken Access Control	19.78	4.3	Nov 15, 2025
Pochipp<= 1.18.0 Broken Access Control	10.6	5.3	Nov 14, 2025
Sendinblue for WooCommerce<= 4.0.49 Broken Access Control	10.6	5.3	Nov 14, 2025
Prime Slider – Addons For Elementor<= 4.0.10 Server Side Request Forgery (SSRF)	45.08	4.9	Nov 13, 2025
Yandex.Metrica<= 1.2.2 Broken Access Control	31.8	5.3	Nov 7, 2025
Hype<= 1.0.5 Broken Access Control	N/A	5.3	Nov 4, 2025
Subscriptions & Memberships for PayPal<= 1.1.7 Broken Access Control	10.6	5.3	Oct 29, 2025
Google XML Sitemaps<= 4.1.22 Broken Access Control	74.2	5.3	Aug 22, 2025
Progress Planner<= 1.8.0 Privilege Escalation	35.64	8.8	Oct 2, 2025
Gallery Custom Links<= 2.2.5 Cross Site Scripting (XSS)	5.9	5.9	Aug 26, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending