Wordfence Intelligence   >   Vulnerability Researchers   >   Abdi Pranata

Abdi Pranata

9
All Time Ranking
460
All Time Discoveries
0
90 Day Published Submissions
N/A
Last Published Submission

Showing 1-20 of 460 Vulnerabilities

Listings for Buildium <= 0.1.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32606
Apr 11, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP AutoKeyword <= 1.0 - Reflected Cross-Site Scripting
6.1
CVE-2025-32582
Apr 10, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Restrict User Registration <= 1.0.1 Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32655
Apr 10, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Coming Soon Countdown <= 2.2 - Reflected Cross-Site Scripting
6.1
CVE-2025-32578
Apr 10, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Multiple Location Google Map <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32617
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WordPress Spam Blocker <= 2.0.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32581
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Czater.pl – live chat i telefon <= 1.0.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32624
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
DeBounce Email Validator <= 5.7.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32580
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Foliopress WYSIWYG <= 2.6.18 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32610
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
KeyCAPTCHA <= 2.5.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32619
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Nimbata Call Tracking <= 1.7.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32616
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
PlainInventory <= 3.1.9 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32623
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP w3all phpBB <= 2.9.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32575
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP Map Route Planner <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32621
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
User Session Synchronizer <= 1.4.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32612
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
WP Abstracts <= 2.7.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-2025-32591
Apr 9, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
TableOn – WordPress Posts Table Filterable <= 1.0.4 - Missing Authorization
4.3
CVE-2025-32218
Apr 4, 2025
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1 Click WordPress Migration <= 2.2 - Unauthenticated Information Disclsoure
5.3
CVE-2025-32257
Apr 4, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Social Share Buttons & Analytics Plugin – GetSocial.io <= 4.5 - Missing Authorization
4.3
CVE-2025-32239
Apr 4, 2025
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
MyBookProgress by Stormhill Media <= 1.0.8 - Authenticated (Subscriber+) Stored Cross-Site Scripting
6.4
CVE-2025-30982
Apr 3, 2025
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Title CVE ID CVSS Vector Date
Listings for Buildium <= 0.1.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32606 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 11, 2025
WP AutoKeyword <= 1.0 - Reflected Cross-Site Scripting CVE-2025-32582 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 10, 2025
Restrict User Registration <= 1.0.1 Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32655 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 10, 2025
Coming Soon Countdown <= 2.2 - Reflected Cross-Site Scripting CVE-2025-32578 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 10, 2025
Multiple Location Google Map <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32617 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
WordPress Spam Blocker <= 2.0.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32581 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
Czater.pl – live chat i telefon <= 1.0.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32624 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
DeBounce Email Validator <= 5.7.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32580 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
Foliopress WYSIWYG <= 2.6.18 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32610 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
KeyCAPTCHA <= 2.5.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32619 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
Nimbata Call Tracking <= 1.7.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32616 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
PlainInventory <= 3.1.9 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32623 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
WP w3all phpBB <= 2.9.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32575 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
WP Map Route Planner <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32621 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
User Session Synchronizer <= 1.4.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32612 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
WP Abstracts <= 2.7.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting CVE-2025-32591 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N April 9, 2025
TableOn – WordPress Posts Table Filterable <= 1.0.4 - Missing Authorization CVE-2025-32218 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N April 4, 2025
1 Click WordPress Migration <= 2.2 - Unauthenticated Information Disclsoure CVE-2025-32257 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N April 4, 2025
Social Share Buttons & Analytics Plugin – GetSocial.io <= 4.5 - Missing Authorization CVE-2025-32239 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N April 4, 2025
MyBookProgress by Stormhill Media <= 1.0.8 - Authenticated (Subscriber+) Stored Cross-Site Scripting CVE-2025-30982 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N April 3, 2025

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

This site uses cookies in accordance with our Privacy Policy.