Tran Nguyen Bao Khanh (VCI - VNPT Cyber Immunity)

14944.21

XP

770

Reports

64

Reports, last 90 days

#1

28 Dec, 2025

Lvl 10

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
The Aisle<= 2.9 Broken Access Control	4.3	4.3	No date
Powerlift< 3.2.1 Broken Access Control	4.3	4.3	No date
Lobo<= 2.8.6 Broken Access Control	4.3	4.3	No date
Bard<= 1.6 Cross Site Request Forgery (CSRF)	0.68	5.4	No date
Savory<= 2.5 Local File Inclusion	32.4	8.1	Sep 18, 2025
Revolution< 2.5.8 Local File Inclusion	15	7.5	Sep 18, 2025
Search & Go<= 2.7 Broken Authentication	58.8	9.8	Sep 18, 2025
Sale! Immigration law, Visa services support, Migration Agent Consulting<= 1.5.8 Privilege Escalation	19.8	8.8	Sep 17, 2025
Academist< 1.3 Local File Inclusion	32.4	8.1	Sep 16, 2025
Tuturn< 3.6 Broken Authentication	29.4	9.8	Sep 15, 2025
Tuturn< 3.6 Arbitrary File Download	9.75	6.5	Sep 15, 2025
GoStore< 1.6.4 Cross Site Scripting (XSS)	14.2	7.1	Sep 15, 2025
Karzo< 2.6 Local File Inclusion	16.2	8.1	Sep 12, 2025
YOP Poll<= 6.5.37 Cross Site Scripting (XSS)	32.66	7.1	Sep 12, 2025
Enzy< 1.6.4 Cross Site Scripting (XSS)	10.65	7.1	Sep 11, 2025
Togo< 1.0.4 Broken Access Control	3.25	6.5	Sep 11, 2025
Togo< 1.0.4 Cross Site Scripting (XSS)	7.1	7.1	Sep 11, 2025
Togo< 1.0.4 PHP Object Injection	8.8	8.8	Sep 11, 2025
Togo< 1.0.4 Privilege Escalation	13.2	8.8	Sep 11, 2025
Togo< 1.0.4 Broken Access Control	6.5	6.5	Sep 11, 2025
Noisa<= 2.6.0 PHP Object Injection	39.2	9.8	Sep 10, 2025
HomeRoofer<= 2.11.0 Local File Inclusion	16.2	8.1	Sep 10, 2025
Grevo<= 2.4 Local File Inclusion	55.89	8.1	Sep 9, 2025
Joly<= 1.22.0 Local File Inclusion	16.2	8.1	Sep 8, 2025
xSmart<= 1.2.9.4 Content Injection	N/A	4.3	No date
Neuronet< 1.14.0 Local File Inclusion	16.2	8.1	Sep 7, 2025
Xcare< 6.5 Local File Inclusion	32.4	8.1	Sep 7, 2025
Sonaar<= 4.27.4 Cross Site Scripting (XSS)	14.2	7.1	Sep 6, 2025
Sonaar<= 4.27.4 Privilege Escalation	26.4	8.8	Sep 6, 2025
Greenify<= 2.2 Local File Inclusion	16.2	8.1	Aug 29, 2025
Frames<= 1.5.7 Broken Access Control	N/A	4.3	Jul 11, 2025
imEvent<= 3.4.0 Broken Access Control	10.6	5.3	Aug 3, 2025
Constructo<= 4.3.9 Cross Site Request Forgery (CSRF)	8.8	8.8	Aug 3, 2025
Findgo<= 1.3.55 Cross Site Request Forgery (CSRF)	9.9	8.8	Aug 5, 2025
Nokri<= 1.6.4 Cross Site Request Forgery (CSRF)	3.55	7.1	Aug 7, 2025
Triss<= 2.6 Cross Site Scripting (XSS)	10.65	7.1	Aug 20, 2025
Medcity< 1.1.9 Arbitrary File Upload	45	10	Aug 18, 2025
Leblix<= 2.4 Local File Inclusion	16.2	8.1	Aug 28, 2025
Entrada<= 5.7.7 Cross Site Request Forgery (CSRF)	N/A	4.3	Sep 10, 2025
Cerato<= 2.2.18 Cross Site Scripting (XSS)	10.65	7.1	Sep 11, 2025
Businext< 2.4.4 Local File Inclusion	24.3	8.1	Aug 16, 2025
Logtik<= 2.3 Cross Site Scripting (XSS)	7.1	7.1	Aug 13, 2025
Resca<= 3.0.2 Cross Site Scripting (XSS)	14.2	7.1	Aug 11, 2025
Mow<= 4.10 Cross Site Request Forgery (CSRF)	14.4	9.6	Aug 19, 2025
Insurance Ancora<= 2.10.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
OldStory<= 2.15.0 Local File Inclusion	24.3	8.1	Jun 3, 2025
Plastica<= 1.8.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
Childy<= 1.7.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
Stratego<= 1.4.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
Solio<= 1.7.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
Floria<= 1.7.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
Def<= 1.4.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
Abogado<= 1.14.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
Adrena<= 1.2.13 Local File Inclusion	16.2	8.1	Jun 9, 2025
Advice<= 1.13.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
Agora<= 1.4.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
Alanzo<= 1.2.3 Local File Inclusion	16.2	8.1	Jun 9, 2025
Angela<= 1.3.3 Local File Inclusion	16.2	8.1	Jun 9, 2025
Anubia<= 1.0.14 Local File Inclusion	16.2	8.1	Jun 9, 2025
Asclepius<= 1.6.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
BeYoga<= 2.0.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
Carlax<= 1.1.1 Local File Inclusion	16.2	8.1	Jun 9, 2025
Carz<= 1.3.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
Chakra<= 1.13.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
Chardonnay<= 1.19.0 Local File Inclusion	16.2	8.1	Jun 9, 2025
Gravity<= 1.3.0 Local File Inclusion	16.2	8.1	May 20, 2025
Wise Move<= 1.1.15 Local File Inclusion	16.2	8.1	May 20, 2025
SoccerClub<= 2.0.0 Local File Inclusion	16.2	8.1	May 20, 2025
Laundry City<= 1.2.16 Local File Inclusion	16.2	8.1	May 20, 2025
StevenWatkins<= 2.4.0 Local File Inclusion	16.2	8.1	May 20, 2025
Planet Shakers<= 1.0.7 Local File Inclusion	16.2	8.1	May 20, 2025
Samadhi<= 1.0.13 Local File Inclusion	16.2	8.1	May 20, 2025
Birdily \| Travel Agency & Tour Booking WordPress Theme<= 1.2.2 Local File Inclusion	16.2	8.1	May 20, 2025
Heaven11<= 1.0.9 Local File Inclusion	16.2	8.1	May 20, 2025
ChainPress<= 1.0.14 Local File Inclusion	16.2	8.1	May 20, 2025
Partiso<= 1.1.12 Local File Inclusion	16.2	8.1	May 20, 2025
Kargo<= 1.1.13 Local File Inclusion	16.2	8.1	May 20, 2025
Nazareth<= 1.0.16 Local File Inclusion	16.2	8.1	May 20, 2025
Corredo<= 1.1.14 Local File Inclusion	16.2	8.1	May 20, 2025
Elementra<= 1.0.7 Local File Inclusion	24.3	8.1	May 26, 2025
Softic<= 1.13.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
Belicia<= 1.10.0 Local File Inclusion	16.2	8.1	Jun 3, 2025
ProGuards<= 2.13.0 Local File Inclusion	24.3	8.1	Jun 3, 2025
Tax Help<= 2.16.0 Local File Inclusion	24.3	8.1	Jun 3, 2025
Albertino<= 2.17.0.0 Local File Inclusion	24.3	8.1	Jun 3, 2025
Happy Rider<= 2.12.0 Local File Inclusion	24.3	8.1	Jun 3, 2025
City Hostel<= 1.2.3 Local File Inclusion	16.2	8.1	May 20, 2025
Studeon<= 1.1.15 Local File Inclusion	16.2	8.1	May 1, 2025
Healthy Blog<= 1.2.8 Local File Inclusion	16.2	8.1	May 1, 2025
Credit Card Experience<= 1.2.15 Local File Inclusion	16.2	8.1	May 1, 2025
Alhambra<= 1.1.13 Local File Inclusion	16.2	8.1	May 1, 2025
Preston<= 1.1.9 Local File Inclusion	16.2	8.1	May 1, 2025
Translang<= 1.1.16 Local File Inclusion	16.2	8.1	May 1, 2025
Travesia<= 1.1.15 Local File Inclusion	16.2	8.1	May 1, 2025
Hogwords<= 1.2.6 Local File Inclusion	16.2	8.1	May 1, 2025
Artesia<= 1.0.14 Local File Inclusion	16.2	8.1	Jun 9, 2025
Bonko<= 1.0.14 Local File Inclusion	16.2	8.1	Jun 9, 2025
Crework<= 1.1.11 Local File Inclusion	16.2	8.1	May 1, 2025
69 Clothing<= 1.2.11 Local File Inclusion	16.2	8.1	May 1, 2025
MediaFlex<= 1.3.0 Local File Inclusion	48.6	8.1	Apr 26, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending