CatFather

338.45

XP

42

Reports

0

Reports, last 90 days

#13

3 Apr, 2026

🇲🇾

Lvl 2

Website

GitHub

Exploited

Affected software \| Vulnerability	AXP	Severity	Reported
Crew HRM<= 1.1.1 PHP Object Injection	N/A	9	15/02/2024
Contest Gallery<= 23.1.2 Cross Site Scripting (XSS)	28.57	7.1	09/02/2024
Print My Blog<= 3.27.0 Cross Site Scripting (XSS)	3.39	5.9	11/02/2024
SP Project & Document Manager <= 4.71 Directory Traversal	7.5	7.5	08/02/2024
PropertyHive<= 2.0.9 Broken Access Control	5.3	4.3	03/02/2024
Dashboard To-Do List<= 1.2.0 Broken Access Control	4.3	4.3	30/01/2024
PropertyHive<= 2.0.13 Cross Site Scripting (XSS)	4.88	6.5	30/04/2024
WPMobile.App<= 11.41 Cross Site Scripting (XSS)	14.2	7.1	29/04/2024
Praison SEO WordPress<= 4.0.15 Cross Site Scripting (XSS)	3.25	6.5	28/01/2024
Table Maker<= 1.9.1 Cross Site Scripting (XSS)	2.95	5.9	19/02/2024
GDPR Compliance<= 1.2.5 Sensitive Data Exposure	7.5	7.5	25/01/2024
Custom field finder<= 0.3 PHP Object Injection	5.4	5.4	07/02/2024
Simply Static<= 3.1.3 Sensitive Data Exposure	34.5	7.5	05/01/2024
Evergreen Content Poster<= 1.4.2 Broken Access Control	N/A	5.4	10/01/2024
Contest Gallery<= 21.3.4 Arbitrary File Deletion	7.42	8.5	09/02/2024
Kattene<= 1.7 Cross Site Scripting (XSS)	4.88	6.5	26/01/2024
WP Simple HTML Sitemap<= 2.8 Cross Site Scripting (XSS)	14.2	7.1	13/03/2024
Ditty<= 3.1.31 Cross Site Scripting (XSS)	6.5	6.5	15/03/2024
WP Club Manager<= 2.2.11 Cross Site Scripting (XSS)	8.13	6.5	15/02/2024
PostX<= 4.0.1 Cross Site Scripting (XSS)	9.75	6.5	15/03/2024
SP Project & Document Manager <= 4.71 SQL Injection	5.7	7.6	16/02/2024
What's New Generator<= 2.0.2 Cross Site Scripting (XSS)	N/A	5.9	05/01/2024
Libsyn Publisher Hub<= 1.4.4 Cross Site Scripting (XSS)	5.61	6.5	29/02/2024
WP Sort Order<= 1.3.1 Broken Access Control	4.3	4.3	10/01/2024
HeartThis<= 0.1.0 Cross Site Scripting (XSS)	4.88	6.5	25/01/2024
SP Project & Document Manager <= 4.70 Broken Access Control	6.5	6.5	25/01/2024
Molongui<= 4.7.7 Insecure Direct Object References (IDOR)	1.35	2.7	30/01/2024
Church Admin<= 4.1.18 Broken Access Control	7.48	5.4	29/02/2024
Print Page block<= 1.0.8 Cross Site Scripting (XSS)	4.88	6.5	14/02/2024
Sunshine Photo Cart<= 3.1.1 PHP Object Injection	24.84	5.4	28/02/2024
Church Admin<= 4.1.17 Cross Site Scripting (XSS)	5.61	6.5	29/02/2024
Simply Static<= 3.1.3 Cross Site Scripting (XSS)	N/A	5.9	05/01/2024
Frontend Dashboard<= 2.2.1 Cross Site Scripting (XSS)	6.5	6.5	24/01/2024
MyBookTable Bookstore<= 3.3.7 Cross Site Scripting (XSS)	3.25	6.5	26/01/2024
Molongui<= 4.7.7 Cross Site Scripting (XSS)	3.25	6.5	30/01/2024
Sitekit<= 1.6 Cross Site Scripting (XSS)	4.88	6.5	31/01/2024
PropertyHive<= 2.0.9 PHP Object Injection	10.6	5.4	03/02/2024
Cryptocurrency Widgets – Price Ticker & Coins List<= 2.6.8 Broken Access Control	2.35	4.7	24/02/2024
Sirv<= 7.2.0 Broken Access Control	6.21	5.4	28/01/2024
Sirv<= 7.2.0 Server Side Request Forgery (SSRF)	6.21	5.4	28/01/2024

Report vulnerabilities to earn bounties and rewards!

Include pending