Manab Jyoti Dowarah

216.43

XP

34

Reports

0

Reports, last 90 days

#19

28 Dec, 2025

Lvl 1

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
WP Project Manager< 2.6.25 Cross Site Request Forgery (CSRF)	2.15	4.3	Sep 30, 2024
Sliced Invoices<= 3.10.0 Insecure Direct Object References (IDOR)	10.6	5.3	Sep 30, 2024
WP Project Manager<= 2.6.22 Cross Site Scripting (XSS)	N/A	5.9	Sep 30, 2024
WPCasa<= 1.2.13 Insecure Direct Object References (IDOR)	10.66	5.3	Aug 13, 2024
Client Invoicing by Sprout Invoices<= 20.8.0 Insecure Direct Object References (IDOR)	10.6	5.3	Sep 29, 2024
Bit Form – Contact Form Plugin<= 2.13.10 Cross Site Scripting (XSS)	14.2	7.1	Aug 15, 2024
Timetics<= 1.0.23 Sensitive Data Exposure	10.6	5.3	May 23, 2024
Propovoice CRM<= 1.7.8 Insecure Direct Object References (IDOR)	10.6	5.3	Apr 15, 2024
ReviewX<= 1.6.28 Broken Access Control	8.6	5.3	Jul 25, 2024
FormCraft<= 1.2.10 Broken Access Control	4.3	4.3	Jun 13, 2024
Registrations for the Events Calendar<= 2.12.1 Broken Access Control	4.8	6.4	Jul 7, 2024
Football Pool<= 2.11.9 Cross Site Scripting (XSS)	6.5	6.5	Jul 5, 2024
Sunshine Photo Cart<= 3.2.1 Broken Access Control	4.95	4.3	Jul 9, 2024
WP Event Aggregator<= 1.7.9 Cross Site Scripting (XSS)	4.88	6.5	Jul 5, 2024
WP Travel Engine<= 5.9.1 Cross Site Scripting (XSS)	4.88	6.5	Jun 21, 2024
Chained Quiz<= 1.3.2.8 Broken Access Control	10.6	5.3	Jun 18, 2024
Charitable<= 1.8.1.7 Broken Access Control	10.6	5.3	Jun 10, 2024
CRM Perks Forms<= 1.1.5 Broken Access Control	10.6	5.3	Jun 12, 2024
Noptin<= 3.4.2 Broken Access Control	10.6	5.3	May 31, 2024
ProfileGrid <= 5.8.7 Broken Access Control	4.3	4.3	Jun 3, 2024
Chained Quiz<= 1.3.2.8 Cross Site Scripting (XSS)	N/A	5.9	Jun 18, 2024
Timetics<= 1.0.21 Broken Access Control	10.6	5.3	May 23, 2024
WP Time Slots Booking Form<= 1.2.11 Broken Access Control	10.6	5.3	May 17, 2024
WP Time Slots Booking Form<= 1.2.10 Cross Site Scripting (XSS)	14.2	7.1	May 17, 2024
Tickera<= 3.5.2.6 Broken Access Control	3.98	5.3	May 13, 2024
Propovoice CRM<= 1.7.6.2 Cross Site Scripting (XSS)	14.2	7.1	Apr 5, 2024
Xpro Elementor Addons<= 1.4.3.1 Cross Site Scripting (XSS)	N/A	5.9	Mar 30, 2024
Real 3D FlipBook<= 3.71 Cross Site Scripting (XSS)	2.95	5.9	Mar 31, 2024
Easy Affiliate Links<= 3.7.2 Cross Site Scripting (XSS)	4.88	6.5	Mar 30, 2024
SliceWP<= 1.1.10 Cross Site Scripting (XSS)	N/A	5.9	Apr 3, 2024
Sheets To WP Table Live Sync<= 3.7.0 Cross Site Scripting (XSS)	N/A	5.9	Mar 29, 2024
Download Alt Text AI<= 1.3.4 Cross Site Scripting (XSS)	N/A	5.9	Apr 1, 2024
PopupAlly<= 2.1.1 Cross Site Scripting (XSS)	N/A	5.9	Feb 15, 2024
Wappointment<= 2.6.0 Server Side Request Forgery (SSRF)	N/A	4.4	Apr 2, 2024

Report vulnerabilities to earn bounties and rewards!

Include pending