Nguyen Ngoc Quang Bach (maysbachs)

160.69

XP

34

Reports

0

Reports, last 90 days

#16

31 Dec, 2025

Lvl 1

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Eventin<= 4.0.31 PHP Object Injection	13.2	8.8	May 5, 2025
CF7 Spreadsheets<= 2.3.2 Cross Site Scripting (XSS)	4.88	6.5	May 19, 2025
TheBooking<= 1.4.4 Broken Access Control	10.95	7.3	May 8, 2025
Radio Station<= 2.5.12 Cross Site Request Forgery (CSRF)	N/A	4.3	May 28, 2025
My Resume Builder<= 1.0.3 Cross Site Scripting (XSS)	N/A	6.5	May 8, 2025
Beauty Contact Popup Form<= 6.0 Cross Site Scripting (XSS)	N/A	5.9	May 11, 2025
Pre-Publish Post Checklist<= 3.1 Broken Access Control	N/A	4.3	May 9, 2025
Theme Junkie Team Content<= 0.1.1 Cross Site Scripting (XSS)	3.66	6.5	May 27, 2025
Podcast Feed Player Widget and Shortcode<= 2.2.0 Cross Site Scripting (XSS)	3.66	6.5	May 22, 2025
Plugin Inspector<= 1.5 Arbitrary File Download	N/A	4.9	May 13, 2025
EC Stars Rating<= 1.0.11 Cross Site Scripting (XSS)	N/A	5.9	May 9, 2025
VG WORT METIS<= 2.0.1 Broken Access Control	4.88	6.5	May 19, 2025
WP Front User Submit / Front Editor<= 4.9.3 Cross Site Scripting (XSS)	7.1	7.1	May 6, 2025
Eventin<= 4.0.28 Cross Site Scripting (XSS)	14.2	7.1	May 5, 2025
PDPA Consent for Thailand<= 1.1.1 Cross Site Scripting (XSS)	N/A	5.9	May 13, 2025
Hand Talk<= 6.1 Cross Site Scripting (XSS)	N/A	5.9	May 11, 2025
IP Based Login<= 2.4.2 Cross Site Scripting (XSS)	N/A	5.9	May 9, 2025
Hydra Booking<= 1.1.9 Broken Access Control	4.73	6.3	May 13, 2025
Hydra Booking<= 1.1.10 SQL Injection	12.75	8.5	May 13, 2025
Bang tinh vay<= 1.0.1 Cross Site Scripting (XSS)	N/A	5.9	May 1, 2025
Next Event Calendar<= 1.2 Cross Site Scripting (XSS)	N/A	5.9	May 2, 2025
WP Post Corrector<= 1.0.2 SQL Injection	N/A	7.6	May 3, 2025
Read More Login<= 2.0.3 Cross Site Scripting (XSS)	N/A	5.9	May 6, 2025
Hydra Booking<= 1.1.10 SQL Injection	9.56	8.5	May 13, 2025
404 Page by SeedProd< 1.0.2 Cross Site Scripting (XSS)	N/A	5.9	May 10, 2025
Import Social Events<= 1.8.5 Cross Site Scripting (XSS)	4.88	6.5	May 2, 2025
WP User Manager<= 2.9.12 PHP Object Injection	33.81	9.8	Apr 19, 2025
WP Tabs<= 2.2.12 PHP Object Injection	N/A	7.2	Apr 15, 2025
WP Front User Submit / Front Editor<= 5.0.0 Cross Site Scripting (XSS)	N/A	5.9	Apr 3, 2025
Custom Login and Registration<= 1.0.0 Cross Site Scripting (XSS)	6.5	6.5	Apr 13, 2025
Custom Login and Registration<= 1.0.0 Broken Access Control	N/A	5.4	Apr 13, 2025
Social Counter<= 2.0.5 PHP Object Injection	N/A	7.2	Apr 17, 2025
COVID-19 (Coronavirus) Update Your Customers<= 1.5.1 Cross Site Scripting (XSS)	N/A	5.9	Apr 12, 2025
Frontend Dashboard<= 2.2.5 SQL Injection	37.2	9.3	Apr 13, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending