zaim

717.28

XP

105

Reports

3

Reports, last 90 days

#38

3 Apr, 2026

🇩🇿

Lvl 3

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
MDTF<= 1.3.5 Cross Site Scripting (XSS)	11.21	6.5	08/02/2026
Active Products Tables for WooCommerce<= 1.0.7 Cross Site Scripting (XSS)	11.21	6.5	08/02/2026
Themify Event Post<= 1.3.4 Cross Site Scripting (XSS)	5.61	6.5	06/02/2026
Podlove Podcast Publisher<= 4.3.3 Cross Site Scripting (XSS)	11.21	6.5	06/02/2026
Stylish Cost Calculator<= 8.2.5 Cross Site Scripting (XSS)	4.88	6.5	10/12/2025
MediaPress<= 1.6.2 Cross Site Scripting (XSS)	4.88	6.5	08/12/2025
Sermon Manager<= 2.30.0 Cross Site Scripting (XSS)	4.88	6.5	26/10/2025
WordPress Tooltips<= 10.9.3 Cross Site Scripting (XSS)	4.88	6.5	27/10/2025
WC Builder<= 1.2.0 Cross Site Scripting (XSS)	4.88	6.5	27/11/2025
RestroPress<= 3.2.8.4 Cross Site Scripting (XSS)	4.88	6.5	27/11/2025
Bold Timeline Lite<= 1.2.7 Cross Site Scripting (XSS)	4.88	6.5	27/11/2025
Cool Tag Cloud<= 2.29 Cross Site Scripting (XSS)	5.61	6.5	26/11/2025
Wp Ultimate Review<= 2.3.7 Cross Site Scripting (XSS)	9.75	6.5	07/11/2025
Funnel Builder by FunnelKit<= 3.13.1.2 Cross Site Scripting (XSS)	9.75	6.5	06/11/2025
Analytics Germanized for Google Analytics<= 1.6.2 Cross Site Scripting (XSS)	4.88	6.5	29/10/2025
FireBox<= 3.1.0-free Cross Site Scripting (XSS)	4.88	6.5	28/10/2025
Groundhogg<= 4.2.6 Cross Site Scripting (XSS)	8.41	6.5	24/10/2025
Extensions for Leaflet Map<= 4.8 Cross Site Scripting (XSS)	4.88	6.5	24/10/2025
Memberlite Shortcodes<= 1.4.1 Cross Site Scripting (XSS)	4.88	6.5	21/12/2024
Ditty<= 3.1.58 Cross Site Scripting (XSS)	9.75	6.5	24/07/2025
WPFront User Role Editor<= 4.2.3 Cross Site Scripting (XSS)	9.75	6.5	25/07/2025
Uncanny Toolkit for LearnDash<= 3.7.0.3 Cross Site Scripting (XSS)	9.75	6.5	24/07/2025
Geolocation IP Detection<= 5.5.0 Cross Site Scripting (XSS)	4.88	6.5	25/07/2025
Participants Database<= 2.7.6.3 Cross Site Scripting (XSS)	4.88	6.5	28/07/2025
Mail Subscribe List<= 2.1.10 Cross Site Scripting (XSS)	4.88	6.5	28/07/2025
Search Atlas SEO<= 2.5.4 Cross Site Scripting (XSS)	4.88	6.5	28/07/2025
Termageddon: Cookie Consent & Privacy Compliance<= 1.8.1 Cross Site Scripting (XSS)	4.88	6.5	29/07/2025
Designil PDPA Thailand<= 2.0.1 Cross Site Scripting (XSS)	4.88	6.5	29/07/2025
Page-list<= 5.8 Cross Site Scripting (XSS)	9.75	6.5	30/07/2025
Podlove Subscribe button<= 1.3.11 Cross Site Scripting (XSS)	4.88	6.5	31/07/2025
Sitekit<= 2.0 Cross Site Scripting (XSS)	4.88	6.5	31/07/2025
Bitly<= 2.8.0 Cross Site Scripting (XSS)	4.88	6.5	31/07/2025
LC Wizard<= 2.2.4 Cross Site Scripting (XSS)	4.88	6.5	01/08/2025
PilotPress<= 2.0.36 Cross Site Scripting (XSS)	4.88	6.5	01/08/2025
WP Category Dropdown<= 1.9 Cross Site Scripting (XSS)	4.88	6.5	01/08/2025
xili-tidy-tags<= 1.12.06 Cross Site Scripting (XSS)	4.88	6.5	01/08/2025
CubeWP<= 1.1.26 Cross Site Scripting (XSS)	4.88	6.5	28/07/2025
Ibtana – Ecommerce Product Addons<= 0.4.7.6 Cross Site Scripting (XSS)	4.88	6.5	10/06/2025
Pie Calendar<= 1.2.8 Cross Site Scripting (XSS)	4.88	6.5	01/08/2025
PropertyHive<= 2.1.5 Cross Site Scripting (XSS)	4.88	6.5	31/07/2025
MediaPress<= 1.5.9.1 Local File Inclusion	11.25	7.5	28/07/2025
Cookie Notice & Consent Banner for GDPR & CCPA Compliance<= 1.7.11 Cross Site Scripting (XSS)	4.88	6.5	28/07/2025
WP Delicious<= 1.8.7 Cross Site Scripting (XSS)	4.88	6.5	22/07/2025
If-So Dynamic Content Personalization<= 1.9.4 Cross Site Scripting (XSS)	4.88	6.5	27/07/2025
PDF for Elementor Forms + Drag And Drop Template Builder<= 6.2.0 Cross Site Scripting (XSS)	4.88	6.5	01/08/2025
Simple Download Monitor<= 3.9.34 Cross Site Scripting (XSS)	4.88	6.5	25/07/2025
WP Last Modified Info<= 1.9.4 Remote Code Execution (RCE)	33.3	7.4	25/07/2025
Themify Icons<= 2.0.3 Cross Site Scripting (XSS)	4.88	6.5	29/07/2025
Print My Blog<= 3.27.9 Cross Site Scripting (XSS)	9.75	6.5	28/07/2025
News Kit Elementor Addons<= 1.3.4 Broken Access Control	5.4	5.4	12/06/2025
WPAdverts<= 2.2.5 Cross Site Scripting (XSS)	4.88	6.5	11/06/2025
WP Delicious<= 1.8.4 Cross Site Scripting (XSS)	4.88	6.5	08/06/2025
Responsive Blocks<= 2.0.6 Cross Site Scripting (XSS)	4.88	6.5	10/06/2025
ChatBot<= 6.7.3 Broken Access Control	4.3	4.3	09/06/2025
Code Engine<= 0.3.2 Cross Site Scripting (XSS)	3.66	6.5	17/05/2025
WP-Members<= 3.5.4 Cross Site Scripting (XSS)	14.63	6.5	18/05/2025
Ultimate Blocks<= 3.3.6 Cross Site Scripting (XSS)	14.63	6.5	17/05/2025
Responsive Blocks<= 2.0.5 Cross Site Scripting (XSS)	4.88	6.5	20/05/2025
WPAdverts<= 2.2.4 Cross Site Scripting (XSS)	4.88	6.5	20/05/2025
Image Hover Effects Block<= 1.4.5 Cross Site Scripting (XSS)	4.88	6.5	28/04/2025
SKT Blocks<= 2.2 Cross Site Scripting (XSS)	4.88	6.5	25/04/2025
WPAdverts<= 2.2.3 Cross Site Scripting (XSS)	4.88	6.5	26/04/2025
Ultimate Blocks<= 3.3.0 Cross Site Scripting (XSS)	14.63	6.5	08/05/2025
Uncanny Toolkit for LearnDash<= 3.7.0.2 Cross Site Scripting (XSS)	9.75	6.5	03/04/2025
CBX Map for Google Map & OpenStreetMap<= 1.1.12 Cross Site Scripting (XSS)	4.88	6.5	24/03/2025
Woobox<= 1.6 Cross Site Scripting (XSS)	4.88	6.5	25/03/2025
WPBakery Visual Composer WHMCS Elements<= 1.0.4.3 Cross Site Scripting (XSS)	4.88	6.5	27/03/2025
Spiraclethemes Site Library<= 1.5.4 Cross Site Scripting (XSS)	4.88	6.5	27/03/2025
Blockspare<= 3.2.9 Cross Site Scripting (XSS)	4.88	6.5	29/04/2025
EventON<= 2.4.1 Local File Inclusion	16.88	7.5	28/04/2025
Ultimate Blocks<= 3.2.9 Cross Site Scripting (XSS)	14.63	6.5	06/04/2025
WPAdverts<= 2.2.2 Local File Inclusion	16.88	7.5	28/03/2025
SKT Blocks<= 2.0 Cross Site Scripting (XSS)	4.88	6.5	12/04/2025
Church Admin<= 5.0.23 Cross Site Scripting (XSS)	5.61	6.5	24/01/2025
Responsive Blocks<= 2.0.2 Cross Site Scripting (XSS)	4.88	6.5	28/03/2025
Membership For WooCommerce<= 2.8.0 Cross Site Scripting (XSS)	4.88	6.5	24/03/2025
Real Testimonials<= 3.1.6 Cross Site Scripting (XSS)	9.75	6.5	21/01/2025
Uncanny Toolkit for LearnDash<= 3.7.0.1 Cross Site Scripting (XSS)	9.75	6.5	19/01/2025
SKT Skill Bar<= 2.3 Cross Site Scripting (XSS)	4.88	6.5	26/03/2025
SKT Blocks<= 1.8 Cross Site Scripting (XSS)	4.88	6.5	25/03/2025
DSGVO Youtube<= 1.5.1 Cross Site Scripting (XSS)	4.88	6.5	24/03/2025
Maps for WP<= 1.2.4 Cross Site Scripting (XSS)	4.88	6.5	21/12/2024
VK Filter Search<= 2.20.2 Cross Site Scripting (XSS)	4.88	6.5	25/01/2025
Arkhe Blocks<= 2.27.1 Cross Site Scripting (XSS)	4.88	6.5	28/03/2025
SheetDB<= 1.3.4 Cross Site Scripting (XSS)	4.88	6.5	20/12/2024
Ultimate Blocks<= 3.2.7 Cross Site Scripting (XSS)	14.63	6.5	21/01/2025
Simplebooklet PDF Viewer and Embedder<= 1.1.1 Cross Site Scripting (XSS)	4.88	6.5	21/12/2024
SecuPress Free<= 2.2.5.3 Cross Site Scripting (XSS)	9.75	6.5	20/01/2025
Front End Users<= 3.2.30 Cross Site Scripting (XSS)	4.88	6.5	21/12/2024
Social Warfare<= 4.5.5 Cross Site Scripting (XSS)	4.88	6.5	17/01/2025
Qubely<= 1.8.12 Cross Site Scripting (XSS)	4.88	6.5	14/01/2025
Product Table For WooCommerce<= 1.2.3 Cross Site Scripting (XSS)	4.88	6.5	20/12/2024
BookingPress<= 1.1.25 Cross Site Scripting (XSS)	4.88	6.5	17/01/2025
Listamester<= 2.3.4 Cross Site Scripting (XSS)	4.88	6.5	24/12/2024
Ketchup Shortcodes<= 0.1.2 Cross Site Scripting (XSS)	4.88	6.5	24/12/2024
wp-pano<= 1.17 Cross Site Scripting (XSS)	4.88	6.5	25/12/2024
فرم ساز فرم افزار<= 2.0 Cross Site Scripting (XSS)	4.88	6.5	20/12/2024
Donation Block For PayPal<= 2.2.0 Cross Site Scripting (XSS)	4.88	6.5	20/12/2024
Huurkalender WP<= 1.5.6 Cross Site Scripting (XSS)	4.88	6.5	20/12/2024
WE Blocks<= 1.3.5 Cross Site Scripting (XSS)	4.88	6.5	22/12/2024

Report vulnerabilities to earn bounties and rewards!

Include pending