Cat

178.2

XP

42

Reports

0

Reports, last 90 days

#17

18 Nov, 2025

Lvl 1

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
ARMember Premium< 6.7.1 Cross Site Request Forgery (CSRF)	N/A	5.4	Dec 18, 2022
Email Templates<= 1.4.2 Cross Site Request Forgery (CSRF)	8.6	4.3	Dec 10, 2022
Accordion and Accordion Slider<= 1.2.4 Broken Access Control	5.3	5.3	Dec 10, 2022
Portfolio and Projects<= 1.3.7 Broken Access Control	4.3	4.3	Dec 10, 2022
ARMember Premium<= 5.9.2 Broken Access Control	N/A	4.3	Dec 18, 2022
APIExperts Square for WooCommerce<= 4.4.1 Broken Access Control	5.3	5.3	Dec 10, 2022
ARMember Premium<= 5.8 Cross Site Scripting (XSS)	N/A	5.9	Dec 18, 2022
Slider a SlidersPack<= 2.0.2 Broken Access Control	5.3	5.3	Dec 10, 2022
ARMember<= 4.0.5 Cross Site Request Forgery (CSRF)	5.4	5.4	Dec 18, 2022
NOO Timetable<= 2.1.3 Cross Site Request Forgery (CSRF)	4.3	4.3	Nov 29, 2022
NOO Timetable<= 2.1.3 Cross Site Scripting (XSS)	6.5	6.5	Nov 29, 2022
ARMember<= 4.0.4 Cross Site Scripting (XSS)	N/A	5.9	Dec 18, 2022
SW Product Bundles<= 2.0.15 Broken Access Control	5.4	5.4	Dec 31, 2022
Post Hit Counter<= 1.3.2 Broken Access Control	4.3	4.3	Dec 31, 2022
Video Contest WordPress Plugin<= 3.2 Cross Site Request Forgery (CSRF)	4.3	4.3	Nov 29, 2022
Video Contest WordPress Plugin<= 3.2 Cross Site Scripting (XSS)	N/A	5.9	Nov 29, 2022
Gallery Metabox<= 1.5 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 10, 2022
Woocommerce Product Designer<= 4.3.3 Cross Site Request Forgery (CSRF)	5.4	5.4	Dec 8, 2022
SiteAlert (Formerly WP Health)<= 1.9.8 Cross Site Request Forgery (CSRF)	6.5	5.4	Dec 8, 2022
WP EasyPay<= 4.2 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 10, 2022
Featured Post Creative<= 1.2.7 Broken Access Control	5.3	5.3	Dec 10, 2022
Trending/Popular Post Slider and Widget<= 1.5.7 Broken Access Control	5.3	5.3	Dec 10, 2022
Thank You Page Customizer for WooCommerce – Increase Your Sales<= 1.0.13 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 8, 2022
Stock Sync for WooCommerce<= 2.3.2 Broken Access Control	4.3	4.3	Dec 8, 2022
Bulk Resize Media<= 1.1 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 11, 2022
Import External Images<= 1.4 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 11, 2022
Kopa Framework<= 1.3.5 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 10, 2022
Community by PeepSo<= 6.0.2.0 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 31, 2022
Meta slider and carousel with lightbox<= 1.6.2 Broken Access Control	5.3	5.3	Dec 10, 2022
Conditional Payments for WooCommerce<= 2.3.1 Cross Site Request Forgery (CSRF)	5.4	5.4	Dec 8, 2022
ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce<= 1.0.21 Broken Access Control	4.3	4.3	Dec 8, 2022
Cart All In One For WooCommerce<= 1.1.10 Cross Site Request Forgery (CSRF)	5.4	5.4	Dec 8, 2022
OWM Weather<= 5.6.11 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 10, 2022
Cost of Goods for WooCommerce<= 2.8.6 Broken Access Control	5.4	5.4	Jan 18, 2023
Album and Image Gallery plus Lightbox<= 1.6.2 Broken Access Control	5.3	5.3	Dec 10, 2022
FV Flowplayer Video Player<= 7.5.30.7212 Cross Site Request Forgery (CSRF)	8.6	4.3	Dec 31, 2022
Conditional Shipping for WooCommerce<= 2.3.1 Cross Site Request Forgery (CSRF)	5.4	5.4	Dec 8, 2022
WP Table Manager<= 3.5.2 Broken Access Control	N/A	5.3	Dec 22, 2022
WP Table Manager<= 3.5.2 Cross Site Scripting (XSS)	N/A	6.5	Dec 22, 2022
ARMember<= 3.4.10 Broken Access Control	4.3	4.3	Dec 18, 2022
Mediamatic – Media Library Folders<= 2.8.1 Cross Site Request Forgery (CSRF)	4.3	4.3	Dec 10, 2022
Extra Block Design, Style, CSS for ANY Gutenberg Blocks<= 0.2.6 Cross Site Request Forgery (CSRF)	5.4	5.4	Dec 10, 2022

Report vulnerabilities to earn bounties and rewards!

Include pending