Pham Van Tam

58.85

XP

30

Reports

0

Reports, last 90 days

#16

1 Jan, 2026

Lvl 0

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
WPBookit<= 1.0.7 Broken Access Control	N/A	5.3	Jan 22, 2025
Bookingor<= 1.0.12 Broken Access Control	N/A	4.3	Jan 21, 2025
Booking Calendar and Notification<= 4.0.3 Broken Authentication	19.5	6.5	Jan 17, 2025
Booking Calendar and Notification<= 4.0.3 SQL Injection	37.2	9.3	Jan 3, 2025
WebinarPress<= 1.33.28 Cross Site Scripting (XSS)	N/A	5.9	Jan 24, 2025
WP Modal Popup with Cookie Integration<= 2.4 Cross Site Scripting (XSS)	N/A	5.9	Jan 9, 2025
Notification Bar, Sticky Notification Bar, Sticky Welcome Bar for any theme<= 1.1 Cross Site Scripting (XSS)	N/A	5.9	Dec 21, 2024
Welcome Popup<= 1.0.10 Cross Site Scripting (XSS)	N/A	5.9	Dec 24, 2024
Exit Popup Free<= 1.0 Cross Site Scripting (XSS)	N/A	5.9	Jan 10, 2025
Ethiopian Calendar<= 1.1.1 Cross Site Scripting (XSS)	N/A	6.5	Jan 11, 2025
Elfsight Testimonials Slider<= 1.0.1 Cross Site Request Forgery (CSRF)	N/A	5.4	Jan 12, 2025
Elfsight Testimonials Slider<= 1.0.1 Cross Site Scripting (XSS)	N/A	5.9	Jan 12, 2025
Elfsight Testimonials Slider<= 1.0.1 Broken Access Control	N/A	5.4	Jan 14, 2025
Multi Days Events and Multi Events in One Day Calendar<= 1.1.3 Cross Site Request Forgery (CSRF)	N/A	4.3	Jan 22, 2025
FM Notification Bar<= 1.0.4 Cross Site Scripting (XSS)	N/A	5.9	Dec 8, 2024
Easy WP Tiles<= 1 Cross Site Scripting (XSS)	N/A	5.9	Jan 9, 2025
Event Kikfyre<= 2.1.8 Broken Access Control	N/A	5.4	Jan 15, 2025
Songkick Concerts and Festivals<= 0.9.7 Cross Site Request Forgery (CSRF)	2.15	4.3	Jan 22, 2025
Alert Box Block – Display notice/alerts in the front end<= 1.1.0 Cross Site Scripting (XSS)	N/A	6.5	Jan 10, 2025
Content Cloner<= 1.0.1 Broken Access Control	N/A	4.3	Jan 14, 2025
Orbisius Simple Notice<= 1.1.3 Cross Site Scripting (XSS)	N/A	5.9	Dec 6, 2024
Toocheke Companion<= 1.166 Cross Site Scripting (XSS)	N/A	5.9	Jan 11, 2025
AnyRoad<= 1.3.2 Cross Site Request Forgery (CSRF)	N/A	4.3	Jan 14, 2025
Bonjour Bar<= 1.0.0 Cross Site Scripting (XSS)	N/A	5.9	Dec 4, 2024
Post-to-Post Links<= 4.2 Cross Site Scripting (XSS)	N/A	5.9	Dec 14, 2024
Posts Footer Manager<= 2.1.0 Cross Site Scripting (XSS)	N/A	5.9	Dec 3, 2024
WP Cookie<= 1.0.0 Cross Site Scripting (XSS)	N/A	5.9	Dec 16, 2024
WP Header Notification<= 1.2.7 Cross Site Scripting (XSS)	N/A	5.9	Dec 16, 2024
Ultimate Learning Pro<= 3.9 SQL Injection	N/A	7.6	Nov 25, 2024
Highlight<= 2.0.2 Cross Site Scripting (XSS)	N/A	5.9	Dec 6, 2024

Report vulnerabilities to earn bounties and rewards!

Include pending