Wordfence Intelligence   >   Vulnerability Researchers   >   Joshua Provoste

Joshua Provoste

Organization: Hacked Alert

523
All Time Ranking
4
All Time Discoveries
3
90 Day Published Submissions
17 Feb '25
Last Published Submission

1 Achievement

Learn more about Achievements
Submitted 1 Vulnerability
Submitted 1 Vulnerability
December 3, 2024
Learn more Learn more about Achievements

4 Vulnerabilities

Advanced File Manager <= 5.2.10 - Authenticated (Subscriber+) Arbitrary File Upload
7.5
CVE-2024-11391
Dec 2, 2024
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Rapid Cache <= 1.2.3 - Unauthenticated Cache Poisoning
7.2
CVE-2024-12314
Feb 17, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
1 Click WordPress Migration Plugin – 100% FREE for a limited time <= 2.2 - Unauthenticated Sensitive Information Exposure via Database Backup in class-ocm-backup.php
5.9
CVE-2024-13609
Feb 17, 2025
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1 Click WordPress Migration Plugin – 100% FREE for a limited time <= 2.2 - Cross-Site Request Forgery to Backup Process Cancellation
5.3
CVE-2024-13555
Feb 17, 2025
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Title CVE ID CVSS Vector Date
Advanced File Manager <= 5.2.10 - Authenticated (Subscriber+) Arbitrary File Upload CVE-2024-11391 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H December 2, 2024
Rapid Cache <= 1.2.3 - Unauthenticated Cache Poisoning CVE-2024-12314 7.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N February 17, 2025
1 Click WordPress Migration Plugin – 100% FREE for a limited time <= 2.2 - Unauthenticated Sensitive Information Exposure via Database Backup in class-ocm-backup.php CVE-2024-13609 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N February 17, 2025
1 Click WordPress Migration Plugin – 100% FREE for a limited time <= 2.2 - Cross-Site Request Forgery to Backup Process Cancellation CVE-2024-13555 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N February 17, 2025

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

This site uses cookies in accordance with our Privacy Policy.