Elliot

Say thanks

172.85

XP

29

Reports

0

Reports, last 90 days

#19

3 Apr, 2026

🇻🇳

Lvl 1

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
ClickCease Click Fraud Protection<= 3.2.7 Cross Site Request Forgery (CSRF)	2.15	4.3	25/10/2023
Radio Player<= 2.0.73 Broken Access Control	13	6.5	20/07/2023
Load More Anything<= 3.3.3 Broken Access Control	5.4	5.4	25/08/2023
Droit Elementor Addons<= 3.1.5 Cross Site Request Forgery (CSRF)	2.15	4.3	30/10/2023
Spam protection, AntiSpam, FireWall by CleanTalk<= 6.20 Cross Site Request Forgery (CSRF)	10.75	4.3	23/10/2023
Button Generator – easily Button Builder<= 2.3.8 Cross Site Request Forgery (CSRF)	2.15	4.3	28/08/2023
Button Generator – easily Button Builder<= 2.3.8 Broken Access Control	10.6	5.3	28/08/2023
Quantity Plus Minus Button for WooCommerce by CodeAstrology<= 1.1.9 Cross Site Request Forgery (CSRF)	2.15	4.3	17/08/2023
Animator<= 3.0.10 Broken Access Control	13	6.5	28/06/2023
BadgeOS<= 3.7.1.6 Broken Access Control	4.3	4.3	29/05/2023
Droit Dark Mode<= 1.1.2 Cross Site Request Forgery (CSRF)	2.15	4.3	19/09/2023
YITH WooCommerce Product Add-Ons<= 4.2.0 Broken Access Control	10.6	5.3	27/07/2023
Duplicate Theme<= 0.1.6 Cross Site Request Forgery (CSRF)	2.15	4.3	25/05/2023
Tweeple<= 0.9.5 Cross Site Scripting (XSS)	14.2	7.1	18/04/2023
Video Player<= 1.5.22 Cross Site Scripting (XSS)	14.2	7.1	18/04/2023
Inactive Logout<= 3.2.2 Broken Access Control	5.4	5.4	18/09/2023
WP Crowdfunding<= 2.1.5 Broken Access Control	4.3	4.3	31/07/2023
Posts Like Dislike<= 1.1.0 Broken Access Control	10.6	5.3	27/06/2023
POEditor<= 0.9.4 Cross Site Request Forgery (CSRF)	2.7	5.4	28/04/2023
LuckyWP Scripts Control<= 1.2.1 Broken Access Control	5.4	5.4	04/04/2023
Maintenance Switch<= 1.7.1 Cross Site Request Forgery (CSRF)	2.7	5.4	04/04/2023
Simple Org Chart<= 2.3.4 Cross Site Request Forgery (CSRF)	2.15	4.3	27/03/2023
WpStream<= 4.5.4 Cross Site Request Forgery (CSRF)	2.7	5.4	27/06/2023
Five Star Restaurant Menu<= 2.4.6 Cross Site Request Forgery (CSRF)	2.15	4.3	30/06/2023
WP Dummy Content Generator<= 2.3.0 Cross Site Request Forgery (CSRF)	2.7	5.4	30/06/2023
Editorial Calendar<= 3.7.12 Insecure Direct Object References (IDOR)	4.05	5.4	29/05/2023
WP Full Auto Tags Manager<= 2.2 Cross Site Request Forgery (CSRF)	2.15	4.3	24/04/2023
ShiftController Employee Shift Scheduling<= 4.9.23 Cross Site Request Forgery (CSRF)	2.7	5.4	29/03/2023
CopySafe Web Protection<= 3.13 Cross Site Scripting (XSS)	14.2	7.1	31/03/2023

Report vulnerabilities to earn bounties and rewards!

Include pending