Daniel Ruf

25
All Time Ranking
154
All Time Discoveries
0
90 Day Published Submissions
N/A
Last Published Submission

Showing 101-120 of 154 Vulnerabilities

Title CVE ID CVSS Vector Date
WPlite <= 1.3.1 - Cross-Site Request Forgery CVE-2022-1831 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 30, 2022
Multi-page Toolkit <= 2.6 - Cross-Site Request Forgery CVE-2022-1818 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 30, 2022
PDF24 Articles To PDF <= 4.2.2 - Cross-Site Request Forgery CVE-2022-1828 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 30, 2022
WP-EMail <= 2.68.2 - Spam Protection Bypass CVE-2022-1614 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N May 30, 2022
WP-EMail <= 2.68.2 - Cross-Site Request Forgery to Log Deletion CVE-2022-1630 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N May 30, 2022
Inline Google Maps <= 5.11 - Cross-Site Request Forgery CVE-2022-1829 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 30, 2022
CaPa Protect <= 0.5.8.2 - Cross-Site Request Forgery to Settings Update CVE-2022-1832 6.8 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H May 30, 2022
My Private Site <= 3.0.7 - Cross-Site Request Forgery CVE-2022-1627 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 29, 2022
Mail Subscribe List <= 2.1.3 - Cross-Site Request Forgery CVE-2022-1603 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 26, 2022
underConstruction <= 1.19 - Cross-Site Request Forgery to Construction Mode Disabled CVE-2022-1895 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 26, 2022
Seamless Donations: A Platform for Global Fundraising and Rebuilding using Stripe and PayPal <= 5.1.7 - Cross-Site Request Forgery to Settings Chage CVE-2022-1610 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 26, 2022
Core Control <= 1.2.1 - Cross-Site Request Forgery CVE-2022-1760 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 24, 2022
Genki Pre-Publish Reminder <= 1.4.1 - Cross-Site Request Forgery to Cross-Site Scripting CVE-2022-1758 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 23, 2022
WP-chgFontSize <= 1.8 - Cross-Site Request Forgery to Settings Update and Stored Cross-Site Scripting CVE-2022-1764 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H May 23, 2022
RB Internal Links <= 2.0.16 - Cross-Site Request Forgery to Settings update and Cross-Site Scripting CVE-2022-1759 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H May 23, 2022
One Click Plugin Updater <= 2.4.14 - Cross-Site Request Forgery to Settings Update CVE-2022-1791 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H May 23, 2022
New User Email Set Up <= 0.5.2 - Cross-Site Request Forgery to Settings Update CVE-2022-1790 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 23, 2022
Sideblog WordPress Plugin <= 6.0 - Cross-Site Request Forgery to Settings Update and Stored Cross-Site Scripting CVE-2022-1787 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H May 23, 2022
Change Uploaded File Permissions <= 4.0.0 - Cross-Site Request Forgery to Options Update CVE-2022-1788 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 23, 2022
Static Page eXtended <= 2.1 - Cross-Site Request Forgery CVE-2022-1763 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H May 23, 2022

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation