Pricing
Solutions
WordPress security
Instantly fix and mitigate vulnerabilities
Plugin auditing
Paid auditing for WordPress vendors
Managed VDP
Start a security program for your plugins
Bug Bounty
Join the community and earn bounties
Enterprise API
At scale monitoring and vPatching for hosts
Vulnerability database
The latest WordPress security intelligence
Login
Start trial
Nguyen Ngoc Quang Bach (maysbachs)
160.69
XP
34
Reports
0
Reports, last 90 days
#16
18 Nov, 2025
Lvl 1
0
0
0
0
Website
X
GitHub
Sort by
Priority
Severity
Exploited
Search
Affected software | Vulnerability
CVE
AXP
Severity
Reported
Eventin
<= 4.0.31
PHP Object Injection
13.2
8.8
May 5, 2025
CF7 Spreadsheets
<= 2.3.2
Cross Site Scripting (XSS)
4.88
6.5
May 19, 2025
TheBooking
<= 1.4.4
Broken Access Control
10.95
7.3
May 8, 2025
Radio Station
<= 2.5.12
Cross Site Request Forgery (CSRF)
N/A
4.3
May 28, 2025
My Resume Builder
<= 1.0.3
Cross Site Scripting (XSS)
N/A
6.5
May 8, 2025
Beauty Contact Popup Form
<= 6.0
Cross Site Scripting (XSS)
N/A
5.9
May 11, 2025
Pre-Publish Post Checklist
<= 3.1
Broken Access Control
N/A
4.3
May 9, 2025
Theme Junkie Team Content
<= 0.1.1
Cross Site Scripting (XSS)
3.66
6.5
May 27, 2025
Podcast Feed Player Widget and Shortcode
<= 2.2.0
Cross Site Scripting (XSS)
3.66
6.5
May 22, 2025
Plugin Inspector
<= 1.5
Arbitrary File Download
N/A
4.9
May 13, 2025
EC Stars Rating
<= 1.0.11
Cross Site Scripting (XSS)
N/A
5.9
May 9, 2025
VG WORT METIS
<= 2.0.1
Broken Access Control
4.88
6.5
May 19, 2025
WP Front User Submit / Front Editor
<= 4.9.3
Cross Site Scripting (XSS)
7.1
7.1
May 6, 2025
Eventin
<= 4.0.28
Cross Site Scripting (XSS)
14.2
7.1
May 5, 2025
PDPA Consent for Thailand
<= 1.1.1
Cross Site Scripting (XSS)
N/A
5.9
May 13, 2025
Hand Talk
<= 6.1
Cross Site Scripting (XSS)
N/A
5.9
May 11, 2025
IP Based Login
<= 2.4.2
Cross Site Scripting (XSS)
N/A
5.9
May 9, 2025
Hydra Booking
<= 1.1.9
Broken Access Control
4.73
6.3
May 13, 2025
Hydra Booking
<= 1.1.10
SQL Injection
12.75
8.5
May 13, 2025
Bang tinh vay
<= 1.0.1
Cross Site Scripting (XSS)
N/A
5.9
May 1, 2025
Next Event Calendar
<= 1.2
Cross Site Scripting (XSS)
N/A
5.9
May 2, 2025
WP Post Corrector
<= 1.0.2
SQL Injection
N/A
7.6
May 3, 2025
Read More Login
<= 2.0.3
Cross Site Scripting (XSS)
N/A
5.9
May 6, 2025
Hydra Booking
<= 1.1.10
SQL Injection
9.56
8.5
May 13, 2025
404 Page by SeedProd
< 1.0.2
Cross Site Scripting (XSS)
N/A
5.9
May 10, 2025
Import Social Events
<= 1.8.5
Cross Site Scripting (XSS)
4.88
6.5
May 2, 2025
WP User Manager
<= 2.9.12
PHP Object Injection
33.81
9.8
Apr 19, 2025
WP Tabs
<= 2.2.12
PHP Object Injection
N/A
7.2
Apr 15, 2025
WP Front User Submit / Front Editor
<= 5.0.0
Cross Site Scripting (XSS)
N/A
5.9
Apr 3, 2025
Custom Login and Registration
<= 1.0.0
Cross Site Scripting (XSS)
6.5
6.5
Apr 13, 2025
Custom Login and Registration
<= 1.0.0
Broken Access Control
N/A
5.4
Apr 13, 2025
Social Counter
<= 2.0.5
PHP Object Injection
N/A
7.2
Apr 17, 2025
COVID-19 (Coronavirus) Update Your Customers
<= 1.5.1
Cross Site Scripting (XSS)
N/A
5.9
Apr 12, 2025
Frontend Dashboard
<= 2.2.5
SQL Injection
37.2
9.3
Apr 13, 2025
Report vulnerabilities to earn bounties and rewards!
Read more
Include pending
Back to top