Nguyen Ngoc Quang Bach (maysbachs)

160.69

XP

34

Reports

0

Reports, last 90 days

#16

3 Apr, 2026

🇻🇳

Lvl 1

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Eventin<= 4.0.31 PHP Object Injection	13.2	8.8	05/05/2025
CF7 Spreadsheets<= 2.3.2 Cross Site Scripting (XSS)	4.88	6.5	19/05/2025
TheBooking<= 1.4.4 Broken Access Control	10.95	7.3	08/05/2025
Radio Station<= 2.5.12 Cross Site Request Forgery (CSRF)	N/A	4.3	28/05/2025
My Resume Builder<= 1.0.3 Cross Site Scripting (XSS)	N/A	6.5	08/05/2025
Beauty Contact Popup Form<= 6.0 Cross Site Scripting (XSS)	N/A	5.9	11/05/2025
Pre-Publish Post Checklist<= 3.1 Broken Access Control	N/A	4.3	09/05/2025
Theme Junkie Team Content<= 0.1.1 Cross Site Scripting (XSS)	3.66	6.5	27/05/2025
Podcast Feed Player Widget and Shortcode<= 2.2.0 Cross Site Scripting (XSS)	3.66	6.5	22/05/2025
Plugin Inspector<= 1.5 Arbitrary File Download	N/A	4.9	13/05/2025
EC Stars Rating<= 1.0.11 Cross Site Scripting (XSS)	N/A	5.9	09/05/2025
VG WORT METIS<= 2.0.1 Broken Access Control	4.88	6.5	19/05/2025
WP Front User Submit / Front Editor<= 4.9.3 Cross Site Scripting (XSS)	7.1	7.1	06/05/2025
Eventin<= 4.0.28 Cross Site Scripting (XSS)	14.2	7.1	05/05/2025
PDPA Consent for Thailand<= 1.1.1 Cross Site Scripting (XSS)	N/A	5.9	13/05/2025
Hand Talk<= 6.1 Cross Site Scripting (XSS)	N/A	5.9	11/05/2025
IP Based Login<= 2.4.2 Cross Site Scripting (XSS)	N/A	5.9	09/05/2025
Hydra Booking<= 1.1.9 Broken Access Control	4.73	6.3	13/05/2025
Hydra Booking<= 1.1.10 SQL Injection	12.75	8.5	13/05/2025
Bang tinh vay<= 1.0.1 Cross Site Scripting (XSS)	N/A	5.9	01/05/2025
Next Event Calendar<= 1.2 Cross Site Scripting (XSS)	N/A	5.9	02/05/2025
WP Post Corrector<= 1.0.2 SQL Injection	N/A	7.6	03/05/2025
Read More Login<= 2.0.3 Cross Site Scripting (XSS)	N/A	5.9	06/05/2025
Hydra Booking<= 1.1.10 SQL Injection	9.56	8.5	13/05/2025
404 Page by SeedProd< 1.0.2 Cross Site Scripting (XSS)	N/A	5.9	10/05/2025
Import Social Events<= 1.8.5 Cross Site Scripting (XSS)	4.88	6.5	02/05/2025
WP User Manager<= 2.9.12 PHP Object Injection	33.81	9.8	19/04/2025
WP Tabs<= 2.2.12 PHP Object Injection	N/A	7.2	15/04/2025
WP Front User Submit / Front Editor<= 5.0.6 Cross Site Scripting (XSS)	N/A	5.9	03/04/2025
Custom Login and Registration<= 1.0.0 Cross Site Scripting (XSS)	6.5	6.5	13/04/2025
Custom Login and Registration<= 1.0.0 Broken Access Control	N/A	5.4	13/04/2025
Social Counter<= 2.0.5 PHP Object Injection	N/A	7.2	17/04/2025
COVID-19 (Coronavirus) Update Your Customers<= 1.5.1 Cross Site Scripting (XSS)	N/A	5.9	12/04/2025
Frontend Dashboard<= 2.2.5 SQL Injection	37.2	9.3	13/04/2025

Report vulnerabilities to earn bounties and rewards!

Include pending