Muhammad Yudha - DJ

Say thanks

2253.15

XP

385

Reports

9

Reports, last 90 days

#12

17 Jan, 2026

Lvl 5

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
WooCommerce Parcelas<= 1.3.5 Cross Site Scripting (XSS)	5.9	5.9	Oct 18, 2025
Bootstrap Modals<= 1.3.2 Cross Site Scripting (XSS)	4.88	6.5	Sep 24, 2025
Maximum Products per User for WooCommerce<= 4.4.3 Cross Site Scripting (XSS)	4.88	6.5	Sep 24, 2025
SEO Slider<= 1.1.1 Cross Site Scripting (XSS)	4.88	6.5	Sep 24, 2025
Extra Shortcodes<= 2.2 Cross Site Scripting (XSS)	4.88	6.5	Oct 9, 2025
AdWords Conversion Tracking Code<= 1.0 Cross Site Scripting (XSS)	4.88	6.5	Oct 13, 2025
Custom Background Changer<= 3.0 Cross Site Scripting (XSS)	4.88	6.5	Oct 14, 2025
MyBookTable Bookstore<= 3.5.6 Cross Site Scripting (XSS)	4.88	6.5	Oct 14, 2025
Page Title Splitter<= 2.5.9 Cross Site Scripting (XSS)	4.88	6.5	Oct 14, 2025
Web and WooCommerce Addons for WPBakery Builder<= 1.5 Cross Site Scripting (XSS)	4.88	6.5	Oct 17, 2025
User Specific Content<= 1.0.6 Cross Site Scripting (XSS)	4.88	6.5	Oct 18, 2025
Calendar.online / Kalender.digital – Plugin<= 1.0.11 Cross Site Scripting (XSS)	4.88	6.5	Oct 21, 2025
The Moneytizer<= 10.0.6 Cross Site Scripting (XSS)	4.88	6.5	Oct 23, 2025
WebMan Amplifier<= 1.5.12 Cross Site Scripting (XSS)	4.88	6.5	Oct 23, 2025
Funnelforms Free<= 3.8 Cross Site Scripting (XSS)	4.88	6.5	Oct 24, 2025
Series<= 2.0.1 Cross Site Scripting (XSS)	4.88	6.5	Oct 25, 2025
BuddyPress Activity Shortcode<= 1.1.8 Cross Site Scripting (XSS)	4.88	6.5	Oct 25, 2025
Knowledge Base documentation & wiki plugin – BasePress<= 2.17.0.1 Cross Site Scripting (XSS)	4.88	6.5	Oct 28, 2025
MAS Videos<= 1.3.2 Local File Inclusion	11.25	7.5	Oct 21, 2025
Email Verification for WooCommerce<= 3.0.2 Cross Site Scripting (XSS)	4.88	6.5	Apr 23, 2025
Yada Wiki<= 3.5 Cross Site Scripting (XSS)	4.88	6.5	Oct 25, 2025
Featured Video for WordPress – VideographyWP<= 1.0.18 Cross Site Scripting (XSS)	4.88	6.5	Oct 16, 2025
Team Showcase<= 2.9 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Free Shipping Bar: Amount Left for Free Shipping for WooCommerce<= 2.4.9 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Wishlist for WooCommerce<= 3.3.0 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
teachPress<= 9.0.12 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Menu In Post<= 1.3 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Carousel Horizontal Posts Content Slider<= 3.3.2 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Auto Listings<= 2.7.1 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Academy LMS<= 3.4.0 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Combo Offers WooCommerce<= 4.2 Cross Site Scripting (XSS)	4.88	6.5	Nov 30, 2025
Blog Filter<= 1.7.3 Cross Site Scripting (XSS)	4.88	6.5	Nov 29, 2025
Newsletters<= 4.12 Cross Site Scripting (XSS)	4.88	6.5	Nov 28, 2025
FlippingBook<= 2.0.1 Cross Site Scripting (XSS)	4.88	6.5	Nov 28, 2025
Web Directory Free<= 1.7.12 Cross Site Scripting (XSS)	3.66	6.5	Nov 28, 2025
Custom Field Template<= 2.7.6 Cross Site Scripting (XSS)	9.75	6.5	Nov 24, 2025
YouTube Embed<= 5.4 Cross Site Scripting (XSS)	4.88	6.5	Nov 22, 2025
Real 3D FlipBook<= 4.11.4 Cross Site Scripting (XSS)	4.88	6.5	Nov 22, 2025
Page Builder: Live Composer<= 2.0.7 Cross Site Scripting (XSS)	5.61	6.5	Nov 22, 2025
Jobs for WordPress<= 2.7.17 Cross Site Scripting (XSS)	5.61	6.5	Nov 22, 2025
Post Grid and Gutenberg Blocks<= 2.3.23 Cross Site Scripting (XSS)	11.21	6.5	Nov 21, 2025
Themify Portfolio Post<= 1.3.0 Cross Site Scripting (XSS)	8.17	7.1	Nov 21, 2025
ThirstyAffiliates<= 3.11.8 Cross Site Scripting (XSS)	9.75	6.5	Nov 21, 2025
WP-ShowHide<= 1.05 Cross Site Scripting (XSS)	4.88	6.5	Nov 22, 2025
WP Visitor Statistics (Real Time Traffic)<= 8.3 Cross Site Scripting (XSS)	9.75	6.5	Nov 21, 2025
oik<= 4.15.3 Cross Site Scripting (XSS)	4.88	6.5	Oct 27, 2025
Donation Thermometer<= 2.2.6 Cross Site Scripting (XSS)	4.88	6.5	Oct 27, 2025
Accordion Slider<= 1.9.13 Cross Site Scripting (XSS)	4.88	6.5	Oct 24, 2025
Wappointment<= 2.6.9 Cross Site Scripting (XSS)	4.88	6.5	Oct 18, 2025
Stylish Cost Calculator<= 8.1.5 Cross Site Scripting (XSS)	4.88	6.5	Oct 15, 2025
SKT Skill Bar<= 2.5 Cross Site Scripting (XSS)	4.88	6.5	Oct 15, 2025
Stars Testimonials<= 3.3.4 Cross Site Scripting (XSS)	4.88	6.5	Oct 11, 2025
Travelers' Map<= 2.3.2 Cross Site Scripting (XSS)	4.88	6.5	Oct 10, 2025
Advanced FAQ Manager<= 1.5.2 Cross Site Scripting (XSS)	4.88	6.5	Sep 24, 2025
Builderall Builder for WordPress<= 3.0.1 Cross Site Scripting (XSS)	4.88	6.5	Sep 23, 2025
Simple Pull Quote<= 1.6.3 Cross Site Scripting (XSS)	4.88	6.5	Sep 23, 2025
Posts By Tag<= 3.2.1 Cross Site Scripting (XSS)	4.88	6.5	Sep 22, 2025
WPC Countdown Timer for WooCommerce<= 3.1.4 Cross Site Scripting (XSS)	5.61	6.5	Sep 20, 2025
Attesa Extra<= 1.4.6 Cross Site Scripting (XSS)	4.88	6.5	Sep 19, 2025
NextMove Lite<= 2.23.0 Cross Site Scripting (XSS)	5.61	6.5	Sep 18, 2025
Booster for WooCommerce<= 7.3.2 Cross Site Scripting (XSS)	9.75	6.5	Sep 18, 2025
WP Last Modified Info<= 1.9.2 Cross Site Scripting (XSS)	9.75	6.5	Sep 18, 2025
DirectoryPress<= 3.6.25 Cross Site Scripting (XSS)	5.61	6.5	Sep 18, 2025
MDTF<= 1.3.3.8 Cross Site Scripting (XSS)	8.41	6.5	Sep 19, 2025
e2pdf<= 1.28.09 Cross Site Scripting (XSS)	8.41	6.5	Sep 19, 2025
Tab Ultimate<= 1.8 Cross Site Scripting (XSS)	4.88	6.5	Sep 17, 2025
WPCasa<= 1.4.1 Cross Site Scripting (XSS)	4.88	6.5	Sep 13, 2025
Event post<= 5.10.3 Cross Site Scripting (XSS)	8.41	6.5	Sep 13, 2025
Pie Calendar<= 1.2.9 Cross Site Scripting (XSS)	4.88	6.5	Sep 3, 2025
Product Table For WooCommerce<= 1.2.4 PHP Object Injection	9.9	8.8	Jul 28, 2025
H5P<= 1.16.0 Cross Site Scripting (XSS)	9.75	6.5	Sep 13, 2025
Activity Plus Reloaded for BuddyPress<= 1.1.2 Cross Site Scripting (XSS)	4.88	6.5	Sep 12, 2025
Date counter<= 2.0.3 Cross Site Scripting (XSS)	4.88	6.5	Sep 11, 2025
Next Page, Not Next Post<= 0.3.0 Cross Site Scripting (XSS)	4.88	6.5	Sep 10, 2025
WP Mapbox GL JS Maps<= 3.0.1 Cross Site Scripting (XSS)	4.88	6.5	Sep 10, 2025
Events Maker by dFactory<= 1.6.14 Cross Site Scripting (XSS)	4.88	6.5	Sep 10, 2025
Blox Lite<= 1.2.8 Cross Site Scripting (XSS)	4.88	6.5	Sep 10, 2025
Open Currency Converter<= 1.5.0 Cross Site Scripting (XSS)	4.88	6.5	Sep 10, 2025
Post List Featured Image<= 0.5.9 Cross Site Scripting (XSS)	4.88	6.5	Sep 9, 2025
Tooltipy<= 5.5.9 Cross Site Scripting (XSS)	4.88	6.5	Sep 3, 2025
Opal Service<= 1.9.1 Cross Site Scripting (XSS)	4.88	6.5	Aug 31, 2025
SiteGround Email Marketing<= 1.7.1 Cross Site Scripting (XSS)	4.88	6.5	Aug 31, 2025
Rock Convert<= 3.0.1 Cross Site Scripting (XSS)	4.88	6.5	Aug 31, 2025
Video Gallery by Huzzaz<= 10.5 Cross Site Scripting (XSS)	4.88	6.5	Aug 31, 2025
Custom Post Type Attachment<= 3.4.6 Cross Site Scripting (XSS)	4.88	6.5	Aug 30, 2025
Query Posts<= 0.3.2 Cross Site Scripting (XSS)	4.88	6.5	Aug 29, 2025
User Avatar - Reloaded<= 1.2.2 Cross Site Scripting (XSS)	4.88	6.5	Aug 29, 2025
WP Geo<= 3.5.1 Cross Site Scripting (XSS)	4.88	6.5	Aug 29, 2025
WPC Smart Messages for WooCommerce<= 4.2.7 Cross Site Scripting (XSS)	5.61	6.5	Aug 29, 2025
Popular Posts by Webline<= 1.1.1 Cross Site Scripting (XSS)	4.88	6.5	Aug 28, 2025
Photospace Responsive<= 2.2.0 Cross Site Scripting (XSS)	2.95	5.9	Aug 28, 2025
Links shortcode<= 1.8.3 Cross Site Scripting (XSS)	4.88	6.5	Aug 28, 2025
bbp topic count<= 3.2 Cross Site Scripting (XSS)	3.66	6.5	Jul 1, 2025
Job Board Manager<= 2.1.61 Cross Site Scripting (XSS)	3.66	6.5	Jul 1, 2025
ZoloBlocks<= 2.3.11 Server Side Request Forgery (SSRF)	8.1	5.4	Jul 2, 2025
WP Ticket Customer Service Software & Support Ticket System<= 6.0.2 Cross Site Scripting (XSS)	3.66	6.5	Jul 16, 2025
HT Feed<= 1.3.0 Cross Site Scripting (XSS)	3.66	6.5	Aug 11, 2025
Testimonial Slider<= 3.5.8.6 Local File Inclusion	13.2	8.8	Aug 26, 2025
wp-mpdf<= 3.9.1 Cross Site Scripting (XSS)	4.88	6.5	Aug 29, 2025
Request a Quote<= 2.5.0 Cross Site Scripting (XSS)	4.88	6.5	Apr 28, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending