Legion Hunter

Say thanks

1975.16

XP

189

Reports

34

Reports, last 90 days

#12

2 Jan, 2026

Lvl 5

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Easy Upload Files During Checkout<= 3.0.0 Broken Access Control	3.23	4.3	Oct 6, 2025
Sticky Notes for WP Dashboard<= 1.2.4 Broken Access Control	3.23	4.3	Oct 15, 2025
All in One Accessibility<= 1.14 Broken Access Control	4.3	4.3	Oct 17, 2025
History Timeline<= 1.0.6 Broken Access Control	4.3	4.3	Oct 28, 2025
WP Export Categories & Taxonomies<= 1.0.3 Broken Access Control	7.95	5.3	Oct 14, 2025
Varnish/Nginx Proxy Caching<= 1.8.3 Sensitive Data Exposure	10.6	5.3	Oct 14, 2025
Featured Image Generator<= 1.3.3 Broken Access Control	10.6	5.3	Oct 16, 2025
Gerencianet Oficial<= 3.1.3 Sensitive Data Exposure	7.95	5.3	Oct 18, 2025
GS Portfolio for Envato<= 1.4.2 Broken Access Control	10.6	5.3	Oct 21, 2025
Wiremo<= 1.4.99 Broken Access Control	7.95	5.3	Oct 21, 2025
EasyTest<= 1.0.1 Broken Access Control	10.6	5.3	Oct 22, 2025
Simple Like Page<= 1.5.3 Broken Access Control	10.6	5.3	Oct 26, 2025
Wawp<= 4.0.5 Broken Access Control	12.19	5.3	Oct 26, 2025
QuadLayers TikTok Feed<= 4.6.4 Broken Access Control	10.6	5.3	Oct 27, 2025
Black Rider<= 1.2.3 Sensitive Data Exposure	N/A	5.8	Aug 8, 2025
SiteLock Security<= 5.0.1 Broken Access Control	4.3	4.3	Oct 18, 2025
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent<= 4.0.3 Broken Access Control	10.6	5.3	Nov 3, 2025
Product Delivery Date for WooCommerce – Lite<= 3.2.0 Broken Access Control	5.3	5.3	Nov 29, 2025
Shortcodes and extra features for Phlox theme<= 2.17.14 Broken Access Control	19.78	4.3	Nov 27, 2025
Themebeez Toolkit<= 1.3.5 Broken Access Control	10.6	5.3	Nov 26, 2025
Funnelforms Free<= 3.8 Broken Access Control	10.6	5.3	Nov 25, 2025
Plugin Optimizer<= 1.3.7 Broken Access Control	3.55	7.1	Sep 8, 2025
Accept Donations with PayPal<= 1.5.2 Open Redirection	9.4	4.7	Nov 25, 2025
SALESmanago<= 3.9.0 Broken Access Control	10.6	5.3	Nov 24, 2025
Cooked<= 1.11.2 Broken Access Control	12.19	5.3	Nov 24, 2025
WP Telegram Widget and Join Link<= 2.2.12 Broken Access Control	10.6	5.3	Nov 22, 2025
FV Simpler SEO<= 1.9.6 Broken Access Control	10.6	5.3	Nov 22, 2025
Addonify<= 2.0.4 Broken Access Control	10.6	5.3	Nov 22, 2025
Twitch Player<= 2.1.3 Broken Access Control	N/A	5.3	Nov 19, 2025
Claspo – Popups, Spin the Wheel & Email Capture<= 1.0.7 Broken Access Control	10.6	5.3	Nov 17, 2025
Read More & Accordion<= 3.5.5.1 Broken Access Control	4.3	4.3	Nov 15, 2025
Booking calendar, Appointment Booking System<= 3.2.30 Broken Access Control	10.6	5.3	Nov 16, 2025
Sitewide Notice WP<= 2.4.1 Broken Access Control	10.6	5.3	Nov 20, 2025
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent<= 4.0.7 Broken Access Control	10.6	5.3	Nov 16, 2025
Protect WP Admin<= 4.1 Broken Access Control	8.6	4.3	Nov 16, 2025
Request a Quote<= 2.5.3 Broken Access Control	4.3	4.3	Nov 16, 2025
WP Views Counter<= 2.1.2 Broken Access Control	10.6	5.3	Nov 14, 2025
InstaWP Connect<= 0.1.1.9 Broken Access Control	59.8	6.5	Nov 9, 2025
Leaky Paywall<= 4.22.5 Broken Access Control	7.95	5.3	Nov 10, 2025
WP-CRM System<= 3.4.5 Broken Access Control	10.6	5.3	Nov 8, 2025
Post SMTP<= 3.6.1 Broken Access Control	146.28	5.3	Nov 7, 2025
Formstack Online Forms<= 2.0.2 Broken Access Control	10.6	5.3	Nov 5, 2025
Constant Contact + WooCommerce<= 2.4.1 Broken Access Control	10.6	5.3	Nov 5, 2025
MultiParcels Shipping For WooCommerce<= 1.30.12 Broken Access Control	4.95	4.3	Nov 5, 2025
WP Google Analytics Events<= 2.8.2 Sensitive Data Exposure	10.6	5.3	Nov 4, 2025
WP ERP<= 1.16.7 Broken Access Control	12.19	5.3	Nov 4, 2025
WpEvently<= 5.0.4 Broken Access Control	24.38	5.3	Nov 4, 2025
WPForms Google Sheet Connector<= 4.0.0 Broken Access Control	10.6	5.3	Nov 4, 2025
WooCommerce Payment Gateway – Paysera<= 3.10.0 Broken Access Control	4.3	4.3	Nov 4, 2025
Xagio SEO<= 7.1.0.32 Broken Access Control	4.3	4.3	Nov 4, 2025
Order Delivery Date for WooCommerce<= 4.3.1 Broken Access Control	10.8	5.4	Nov 3, 2025
Business Directory<= 6.4.19 Cross Site Request Forgery (CSRF)	0.54	4.3	Nov 3, 2025
Tiktok Feed<= 1.0.23 Broken Access Control	12.19	5.3	Nov 2, 2025
WPS Bidouille<= 1.33.1 Broken Access Control	4.3	4.3	Nov 2, 2025
Payment Gateway for PayPal on WooCommerce<= 9.0.53 Broken Access Control	10.6	5.3	Oct 31, 2025
SiteGround Security<= 1.5.8 Broken Access Control	74.2	5.3	Oct 31, 2025
Cart Weight for WooCommerce<= 1.9.11 Broken Access Control	10.6	5.3	Oct 31, 2025
Quiz And Survey Master<= 10.3.2 Broken Access Control	24.38	5.3	Oct 31, 2025
WP Compress for MainWP<= 6.50.07 Broken Access Control	7.95	5.3	Oct 30, 2025
OnPay.io for WooCommerce<= 1.0.47 Broken Access Control	12.19	5.3	Oct 30, 2025
BERTHA AI<= 1.13 Broken Access Control	12.19	5.3	Oct 30, 2025
Sermon Manager<= 2.30.0 Broken Access Control	10.6	5.3	Oct 29, 2025
Virtuaria PagBank / PagSeguro para Woocommerce<= 3.6.3 Broken Access Control	10.6	5.3	Oct 29, 2025
UsersWP<= 1.2.47 Broken Access Control	10.6	5.3	Oct 26, 2025
Show Variations as Single Products Woocommerce<= 2.0 Broken Access Control	7.95	5.3	Oct 25, 2025
Custom Order Numbers for WooCommerce<= 1.11.0 Broken Access Control	10.6	5.3	Oct 23, 2025
Legal Pages<= 1.4.6 Broken Access Control	10.6	5.3	Oct 22, 2025
Better Chat Support for Messenger<= 1.2.18 Broken Access Control	7.95	5.3	Oct 21, 2025
PPOM for WooCommerce<= 33.0.16 Broken Access Control	4.3	4.3	Oct 18, 2025
Theater for WordPress<= 0.18.8 Broken Access Control	24.38	5.3	Oct 14, 2025
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent<= 4.0.3 Broken Access Control	4.3	4.3	Oct 9, 2025
Uncanny Automator< 6.10.0 Sensitive Data Exposure	12.9	4.3	Oct 8, 2025
Frontend File Manager<= 23.2 Broken Access Control	4.3	4.3	Sep 30, 2025
Smart Coupons for WooCommerce<= 2.2.3 Broken Access Control	8.6	4.3	Sep 30, 2025
WebToffee eCommerce Marketing Automation<= 2.1.1 Broken Access Control	4.3	4.3	Sep 30, 2025
Product Feed for WooCommerce<= 2.3.1 Broken Access Control	4.3	4.3	Sep 30, 2025
Order Export & Order Import for WooCommerce<= 2.6.7 Broken Access Control	12.9	4.3	Sep 30, 2025
Booster for WooCommerce<= 7.4.0 Broken Access Control	8.6	4.3	Sep 30, 2025
Accessibility Toolkit by WebYes<= 2.0.4 Broken Access Control	3.23	4.3	Sep 30, 2025
Arconix Shortcodes<= 2.1.18 Broken Access Control	4.3	4.3	Sep 30, 2025
Debug Log Viewer<= 2.0.3 Broken Access Control	4.05	5.4	Sep 29, 2025
Facebook for WooCommerce<= 3.5.7 Broken Access Control	N/A	5.3	Sep 6, 2025
Яндекс Доставка (Boxberry)<= 2.33 Broken Access Control	4.05	5.4	Sep 28, 2025
Elastic Email Sender<= 1.2.20 Broken Access Control	4.3	4.3	Sep 28, 2025
Web Accessibility By accessiBe<= 2.10 Broken Access Control	6.21	5.4	Sep 27, 2025
MDTF<= 1.3.3.9 Broken Access Control	7.42	4.3	Sep 24, 2025
Persian Admnin Fonts<= 4.1.03 Broken Access Control	4.05	5.4	Sep 21, 2025
KiotViet Sync<= 1.8.5 Broken Access Control	3.23	4.3	Sep 20, 2025
Whydonate<= 4.0.15 Broken Access Control	7.95	5.3	Sep 20, 2025
WebinarPress<= 1.33.28 Broken Access Control	4.3	4.3	Sep 19, 2025
GoCache<= 1.3.6 Broken Access Control	5.4	5.4	Sep 17, 2025
Admin Management Xtended <= 2.5.1 Broken Access Control	4.95	4.3	Sep 17, 2025
MeetingHub<= 1.23.9 Broken Access Control	3.23	4.3	Sep 20, 2025
Front End Users<= 3.2.33 Broken Access Control	3.23	4.3	Sep 20, 2025
WowRevenue<= 1.2.13 Broken Access Control	4.3	4.3	Sep 19, 2025
One Page Express Companion<= 1.6.43 Broken Access Control	4.3	4.3	Sep 15, 2025
ShopMagic<= 4.5.6 Sensitive Data Exposure	23.2	5.8	Aug 20, 2025
Revive Old Posts<= 9.3.3 Broken Access Control	4.3	4.3	Sep 14, 2025
Simple Job Board<= 2.13.7 Sensitive Data Exposure	15	7.5	Aug 12, 2025
Welcart e-Commerce<= 2.11.24 Broken Access Control	4.3	4.3	Sep 14, 2025

Report vulnerabilities to earn bounties and rewards!

Include pending