Le Ngoc Anh

Organization: sun*inc

27
All Time Ranking
148
All Time Discoveries
4
90 Day Published Submissions
20 Nov '24
Last Published Submission
Submitted 5 Vulnerabilities
Submitted 5 Vulnerabilities
November 8, 2024
Submitted XSS Vulnerability
Submitted XSS Vulnerability
September 4, 2024
Submitted 1 Vulnerability
Submitted 1 Vulnerability
May 21, 2024

Showing 101-120 of 148 Vulnerabilities

Title CVE ID CVSS Vector Date
Interactive World Map <= 3.2.0 - Reflected Cross-Site Scripting CVE-2023-47767 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 14, 2023
Permalinks Customizer <= 2.8.2 - Reflected Cross-Site Scripting CVE-2023-47773 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 14, 2023
Seo By 10Web <= 1.2.9 - Reflected Cross-Site Scripting CVE-2023-34375 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
SendPress Newsletters <= 1.23.11.6 - Reflected Cross-Site Scripting CVE-2023-47517 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
Restrict Categories <= 2.6.4 - Reflected Cross-Site Scripting via rc-search CVE-2023-47518 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
Responsive Column Widgets <= 1.2.7 - Reflected Cross-Site Scripting via tab CVE-2023-47520 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
Q2W3 Post Order <= 1.2.8 - Reflected Cross-Site Scripting CVE-2023-47521 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
Photo Feed <= 2.2.1 - Reflected Cross-Site Scripting via pf-gid CVE-2023-47522 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
CodeBard's Patron Button and Widgets for Patreon <= 2.1.9 - Reflected Cross-Site Scripting via cb_p6_tab CVE-2023-47524 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
Star CloudPRNT for WooCommerce <= 2.0.3 - Unauthenticated Cross-Site Scripting CVE-2023-47514 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N November 7, 2023
WP Simple HTML Sitemap <= 2.2 - Reflected Cross-Site Scripting via id CVE-2023-46627 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 25, 2023
Grid Plus <= 1.3.4 - Reflected Cross-Site Scripting via grid_id CVE-2023-46209 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 19, 2023
Archivist – Custom Archive Templates <= 1.7.5 - Reflected Cross-Site Scripting CVE-2023-46194 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 18, 2023
Add Shortcodes Actions And Filters <= 2.0.9 - Reflected Cross-Site Scripting CVE-2023-46072 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 16, 2023
EG-Attachments <= 2.1.3 - Reflected Cross-Site Scripting via 'paged' CVE-2023-46070 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 16, 2023
ApplyOnline – Application Form Builder and Manager <= 2.5.5 - Reflected Cross-Site Scripting CVE-2023-45756 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 12, 2023
Ebook Store <= 5.8001 - Reflected Cross-Site Scripting CVE-2023-45602 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 9, 2023
WooODT Lite <= 2.4.6 - Reflected Cross-Site Scripting CVE-2023-45006 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 3, 2023
Product Category Tree <= 2.5 - Reflected Cross-Site Scripting CVE-2023-45054 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 3, 2023
WooCommerce PensoPay <= 6.3.1 - Reflected Cross-Site Scripting via 'pensopay_action' CVE-2023-41691 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N September 5, 2023

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation