Nguyen Xuan Chien

36
All Time Ranking
117
All Time Discoveries
0
90 Day Published Submissions
N/A
Last Published Submission

Showing 41-60 of 117 Vulnerabilities

Title CVE ID CVSS Vector Date
Broken Link Checker for YouTube <= 1.3 - Cross-Site Request Forgery via plugin_settings_page() CVE-2023-48281 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 23, 2023
Bulk Comment Remove <= 2 - Cross-Site Request Forgery via brc_admin() CVE-2023-48330 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 23, 2023
Frontier Post <= 6.1 - Cross-Site Request Forgery CVE-2023-6137 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 23, 2023
League Table <= 1.13 - Cross-Site Request Forgery CVE-2023-48334 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 23, 2023
MyBookTable Bookstore <= 3.3.3 - Cross-Site Request Forgery CVE-2023-48331 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 23, 2023
Simple Testimonials Showcase <= 1.1.6 - Cross-Site Request Forgery CVE-2023-48283 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 23, 2023
Taxonomy filter <= 2.2.9 - Cross-Site Request Forgery via taxonomy_filter_save_main_settings() CVE-2023-48282 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 23, 2023
Preloader for Website <= 1.2.2 - Missing Authorization via plwao_register_settings() CVE-2023-48273 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N November 21, 2023
Easy Call Now by ThikShare <= 1.1.0 - Cross-Site Request Forgery via settings_page CVE-2023-47819 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 16, 2023
Arigato Autoresponder and Newsletter <= 2.7.2.2 - Cross-Site Request Forgery CVE-2023-47686 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N November 9, 2023
Woo Custom and Sequential Order Number <= 2.6.0 - Cross-Site Request Forgery CVE-2023-47687 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 9, 2023
Youtube SpeedLoad <= 0.6.3 - Cross-Site Request Forgery CVE-2023-47688 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 9, 2023
Plugin Name: Device Theme Switcher <= 3.0.2 - Cross-Site Request Forgery CVE-2023-47556 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N November 7, 2023
Auto Excerpt everywhere <= 1.5 - Cross-Site Request Forgery CVE-2023-46776 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N October 27, 2023
Auto Limit Posts Reloaded <= 2.5 - Cross-Site Request Forgery CVE-2023-46778 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N October 26, 2023
Current Menu Item for Custom Post Types <= 1.5 - Cross-Site Request Forgery CVE-2023-46781 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N October 26, 2023
Original texts Yandex WebMaster <= 1.18 - Cross-Site Request Forgery CVE-2023-46775 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N October 26, 2023
WP Knowledgebase <= 1.3.4 - Cross-Site Request Forgery CVE-2023-5802 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N October 26, 2023
Parcel Pro <= 1.6.11 - Open Redirect via 'redirect' CVE-2023-46624 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N October 25, 2023
User Avatar <= 1.4.11 - Reflected Cross-Site Scripting CVE-2023-46621 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N October 25, 2023

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation