Pricing
Solutions
WordPress security
Instantly fix and mitigate vulnerabilities
Plugin auditing
Paid auditing for WordPress vendors
Managed VDP
Start a security program for your plugins
Bug Bounty
Join the community and earn bounties
Enterprise API
At scale monitoring and vPatching for hosts
Vulnerability database
The latest WordPress security intelligence
Login
Start trial
Manab Jyoti Dowarah
216.43
XP
34
Reports
0
Reports, last 90 days
#19
18 Nov, 2025
Lvl 1
0
0
0
0
Website
X
GitHub
Sort by
Priority
Severity
Exploited
Search
Affected software | Vulnerability
CVE
AXP
Severity
Reported
WP Project Manager
< 2.6.25
Cross Site Request Forgery (CSRF)
2.15
4.3
Sep 30, 2024
Sliced Invoices
<= 3.9.5
Insecure Direct Object References (IDOR)
10.6
5.3
Sep 30, 2024
WP Project Manager
<= 2.6.22
Cross Site Scripting (XSS)
N/A
5.9
Sep 30, 2024
WPCasa
<= 1.2.13
Insecure Direct Object References (IDOR)
10.66
5.3
Aug 13, 2024
Client Invoicing by Sprout Invoices
<= 20.8.0
Insecure Direct Object References (IDOR)
10.6
5.3
Sep 29, 2024
Bit Form – Contact Form Plugin
<= 2.13.10
Cross Site Scripting (XSS)
14.2
7.1
Aug 15, 2024
Timetics
<= 1.0.23
Sensitive Data Exposure
10.6
5.3
May 23, 2024
Propovoice CRM
<= 1.7.8
Insecure Direct Object References (IDOR)
10.6
5.3
Apr 15, 2024
ReviewX
<= 1.6.28
Broken Access Control
8.6
5.3
Jul 25, 2024
FormCraft
<= 1.2.10
Broken Access Control
4.3
4.3
Jun 13, 2024
Registrations for the Events Calendar
<= 2.12.1
Broken Access Control
4.8
6.4
Jul 7, 2024
Football Pool
<= 2.11.9
Cross Site Scripting (XSS)
6.5
6.5
Jul 5, 2024
Sunshine Photo Cart
<= 3.2.1
Broken Access Control
4.95
4.3
Jul 9, 2024
WP Event Aggregator
<= 1.7.9
Cross Site Scripting (XSS)
4.88
6.5
Jul 5, 2024
WP Travel Engine
<= 5.9.1
Cross Site Scripting (XSS)
4.88
6.5
Jun 21, 2024
Chained Quiz
<= 1.3.2.8
Broken Access Control
10.6
5.3
Jun 18, 2024
Charitable
<= 1.8.1.7
Broken Access Control
10.6
5.3
Jun 10, 2024
CRM Perks Forms
<= 1.1.5
Broken Access Control
10.6
5.3
Jun 12, 2024
Noptin
<= 3.4.2
Broken Access Control
10.6
5.3
May 31, 2024
ProfileGrid
<= 5.8.7
Broken Access Control
4.3
4.3
Jun 3, 2024
Chained Quiz
<= 1.3.2.8
Cross Site Scripting (XSS)
N/A
5.9
Jun 18, 2024
Timetics
<= 1.0.21
Broken Access Control
10.6
5.3
May 23, 2024
WP Time Slots Booking Form
<= 1.2.11
Broken Access Control
10.6
5.3
May 17, 2024
WP Time Slots Booking Form
<= 1.2.10
Cross Site Scripting (XSS)
14.2
7.1
May 17, 2024
Tickera
<= 3.5.2.6
Broken Access Control
3.98
5.3
May 13, 2024
Propovoice CRM
<= 1.7.6.2
Cross Site Scripting (XSS)
14.2
7.1
Apr 5, 2024
Xpro Elementor Addons
<= 1.4.3.1
Cross Site Scripting (XSS)
N/A
5.9
Mar 30, 2024
3D FlipBook, PDF Viewer, PDF Embedder – Real 3D FlipBook WordPress Plugin
<= 3.71
Cross Site Scripting (XSS)
2.95
5.9
Mar 31, 2024
Easy Affiliate Links
<= 3.7.2
Cross Site Scripting (XSS)
4.88
6.5
Mar 30, 2024
SliceWP
<= 1.1.10
Cross Site Scripting (XSS)
N/A
5.9
Apr 3, 2024
Sheets To WP Table Live Sync
<= 3.7.0
Cross Site Scripting (XSS)
N/A
5.9
Mar 29, 2024
Download Alt Text AI
<= 1.3.4
Cross Site Scripting (XSS)
N/A
5.9
Apr 1, 2024
PopupAlly
<= 2.1.1
Cross Site Scripting (XSS)
N/A
5.9
Feb 15, 2024
Appointment Bookings for Zoom GoogleMeet and more – Wappointment
<= 2.6.0
Server Side Request Forgery (SSRF)
N/A
4.4
Apr 2, 2024
Report vulnerabilities to earn bounties and rewards!
Read more
Include pending
Back to top