savphill

615.19

XP

63

Reports

0

Reports, last 90 days

#19

29 Dec, 2025

Lvl 3

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Woostify<= 2.4.2 Cross Site Scripting (XSS)	2.95	5.9	Aug 14, 2025
WordPress<= 6.8.2 Cross Site Scripting (XSS)	59	5.9	Aug 17, 2025
Colibri Page Builder< 1.0.334 Cross Site Scripting (XSS)	5.9	5.9	Aug 20, 2025
Email Template Customizer for WooCommerce<= 1.2.17 Cross Site Scripting (XSS)	20.36	5.9	No date
Blocksy<= 2.1.6 Cross Site Scripting (XSS)	14.75	5.9	Jul 31, 2025
Blocksy<= 2.0.97 Broken Access Control	N/A	4.9	Apr 27, 2025
Advanced Woo Labels<= 2.15 Cross Site Scripting (XSS)	4.88	6.5	Oct 23, 2024
CMP – Coming Soon & Maintenance<= 4.1.14 Arbitrary File Upload	N/A	9.1	Dec 26, 2024
WP Proposals<= 2.3 Cross Site Scripting (XSS)	2.95	5.9	Oct 1, 2024
WooCommerce<= 9.7.0 Cross Site Scripting (XSS)	14.75	5.9	Feb 10, 2025
Document Block – Upload & Embed Docs<= 1.1.0 Broken Access Control	4.05	5.4	Aug 6, 2024
Popup Maker<= 1.20.2 Cross Site Scripting (XSS)	29.25	6.5	Sep 30, 2024
Icegram<= 3.1.31 Cross Site Scripting (XSS)	4.88	6.5	Oct 22, 2024
WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels<= 4.7.1 Cross Site Scripting (XSS)	4.43	5.9	Dec 10, 2024
PPOM for WooCommerce<= 33.0.8 Cross Site Scripting (XSS)	N/A	5.9	Dec 20, 2024
Flexible PDF Coupons< 1.10.3 Cross Site Scripting (XSS)	4.88	6.5	Dec 3, 2024
Htaccess File Editor<= 1.0.19 Broken Authentication	15.9	5.3	Dec 11, 2024
WordPress Backup & Migration<= 1.5.3 Sensitive Data Exposure	11.8	5.9	Dec 14, 2024
Email Templates Customizer for WordPress – Drag And Drop Email Templates Builder – Ye<= 2.1.4 Cross Site Scripting (XSS)	4.88	6.5	Nov 27, 2024
Typing Text<= 1.2.7 Cross Site Scripting (XSS)	4.88	6.5	Aug 6, 2024
New User Approve<= 2.6.2 Broken Access Control	4.88	5.4	Oct 31, 2024
Landing Page Cat<= 1.7.4 Broken Access Control	4.05	5.4	Jul 30, 2024
Email Template Customizer for WooCommerce<= 1.2.9.1 Cross Site Scripting (XSS)	2.95	5.9	Aug 28, 2024
Htaccess File Editor<= 1.0.18 Broken Access Control	6.5	6.5	Sep 29, 2024
Advanced Woo Labels<= 2.01 Cross Site Scripting (XSS)	4.88	6.5	Aug 31, 2024
Essential Blocks for Gutenberg<= 4.8.4 Cross Site Scripting (XSS)	19.5	6.5	Aug 6, 2024
Depicter Slider<= 3.2.2 Cross Site Scripting (XSS)	11.8	5.9	Sep 11, 2024
WS Form LITE<= 1.9.238 Cross Site Scripting (XSS)	16.33	7.1	Aug 21, 2024
Icegram<= 3.1.25 Cross Site Scripting (XSS)	4.88	6.5	Jul 17, 2024
Depicter Slider<= 3.1.2 Cross Site Scripting (XSS)	8.85	5.9	May 26, 2024
3D FlipBook – PDF Flipbook Viewer, Flipbook Image Gallery<= 1.15.6 Cross Site Scripting (XSS)	8.85	5.9	Apr 5, 2024
WP Table Builder<= 1.4.15 Cross Site Scripting (XSS)	14.63	6.5	Feb 29, 2024
Fusion<= 1.6.1 Cross Site Scripting (XSS)	4.88	6.5	Feb 12, 2024
VK All in One Expansion Unit<= 9.99.1.0 Cross Site Scripting (XSS)	19.5	6.5	May 13, 2024
WooCommerce<= 8.9.2 Content Injection	8.75	3.5	Jun 5, 2024
Page Builder Sandwich – Front-End Page Builder<= 5.1.0 Cross Site Scripting (XSS)	4.88	6.5	Feb 1, 2024
Page Builder Sandwich – Front-End Page Builder<= 5.1.0 Cross Site Scripting (XSS)	4.88	6.5	Feb 1, 2024
Page Builder Sandwich – Front-End Page Builder<= 5.1.0 Broken Access Control	3.23	4.3	Feb 2, 2024
Page Builder: Live Composer<= 2.0.5 Cross Site Scripting (XSS)	2.95	5.9	Mar 12, 2024
Woody ad snippets<= 2.5.0 Cross Site Scripting (XSS)	N/A	6.5	Jan 23, 2024
PPOM for WooCommerce<= 32.0.20 Content Injection	10.6	5.3	May 10, 2024
YITH WooCommerce Tab Manager<= 1.35.0 Cross Site Scripting (XSS)	5.9	5.9	May 2, 2024
YITH WooCommerce Product Add-Ons<= 4.9.2 Content Injection	10.6	5.3	Apr 28, 2024
Advanced Woo Labels<= 1.93 Cross Site Scripting (XSS)	4.88	6.5	May 8, 2024
Brave<= 0.6.9 Cross Site Scripting (XSS)	N/A	5.9	Feb 19, 2024
Visual Composer Website Builder<= 45.8.0 Cross Site Scripting (XSS)	11.21	6.5	Apr 22, 2024
YITH WooCommerce Wishlist<= 3.32.0 Cross Site Scripting (XSS)	N/A	5.9	Apr 28, 2024
Pootle Pagebuilder – WordPress Page builder<= 5.7.1 Cross Site Scripting (XSS)	4.88	6.5	Feb 19, 2024
Page Builder: Live Composer<= 1.5.38 Broken Access Control	2.35	4.7	Mar 12, 2024
Fixed HTML Toolbar<= 1.0.7 Cross Site Scripting (XSS)	N/A	5.9	Jan 11, 2024
Remove Footer Credit<= 1.0.13 Cross Site Scripting (XSS)	N/A	5.9	Jan 25, 2024
ZionBuilder<= 3.6.9 Cross Site Scripting (XSS)	2.95	5.9	Feb 8, 2024
Bold Page Builder<= 4.8.0 Cross Site Scripting (XSS)	14.63	6.5	Feb 6, 2024
Post and Page Builder by BoldGrid – Visual Drag and Drop Editor<= 1.26.2 Cross Site Scripting (XSS)	14.63	6.5	Feb 16, 2024
Astra WordPress Theme<= 4.6.4 Cross Site Scripting (XSS)	20.65	5.9	Jan 29, 2024
Visual Composer Website Builder<= 45.6.0 Cross Site Scripting (XSS)	10.18	5.9	Feb 8, 2024
Blocksy<= 2.0.19 Cross Site Scripting (XSS)	13	6.5	Jan 18, 2024
Scroll Triggered Box<= 2.3 Cross Site Scripting (XSS)	3.25	6.5	Jan 9, 2024

Report vulnerabilities to earn bounties and rewards!

Include pending