mcdruid

870.01

XP

35

Reports

5

Reports, last 90 days

#4

17 Nov, 2025

Lvl 3

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
HAPPY<= 1.0.7 Remote Code Execution (RCE)	103.5	10	Sep 25, 2025
s2Member<= 250905 Remote Code Execution (RCE)	54	9	Sep 1, 2025
GSheets Connector<= 1.1.1 PHP Object Injection	N/A	7.2	Jul 6, 2025
Language Translate Widget for WordPress – ConveyThis<= 268.8 PHP Object Injection	N/A	7.2	Jul 10, 2025
Awesome Support<= 6.3.5 Deserialization of untrusted data	N/A	7.2	Aug 14, 2025
eDS Responsive Menu<= 1.2 PHP Object Injection	N/A	7.2	Jun 20, 2025
Aitasi Coming Soon<= 2.0.2 Deserialization of untrusted data	N/A	7.2	Jun 19, 2025
LTL Freight Quotes - TQL Edition<= 1.2.6 PHP Object Injection	N/A	7.2	Jul 12, 2025
LTL Freight Quotes – Daylight Edition<= 2.2.7 PHP Object Injection	N/A	7.2	Jul 12, 2025
LTL Freight Quotes – Day & Ross Edition<= 2.1.11 PHP Object Injection	N/A	7.2	Jul 12, 2025
Small Package Quotes – USPS Edition<= 1.3.9 PHP Object Injection	N/A	7.2	Jul 8, 2025
bidorbuy Store Integrator<= 2.12.0 Remote Code Execution (RCE)	N/A	9.1	Aug 22, 2025
WP Funnel Manager<= 1.4.0 PHP Object Injection	N/A	9.8	May 26, 2025
Simple Login Log<= 1.1.3 PHP Object Injection	N/A	7.2	Jul 6, 2025
Boldermail<= 2.4.0 PHP Object Injection	N/A	8.8	Jul 6, 2025
Preserve Code Formatting<= 4.0.1 PHP Object Injection	9.9	8.8	Jul 2, 2025
Site Chat on Telegram<= 1.0.4 PHP Object Injection	N/A	9.8	Jun 5, 2025
CoSchool LMS<= 1.4.3 PHP Object Injection	N/A	9.8	Jun 3, 2025
UNIVERSAM<= 8.72.34 PHP Object Injection	N/A	9.8	Jun 6, 2025
eCommerce Product Catalog<= 3.4.3 PHP Object Injection	14.4	7.2	May 23, 2025
Category Icon<= 1.0.2 XML External Entity (XXE)	4.55	9.1	May 4, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending