SOPROBRO

8
All Time Ranking
290
All Time Discoveries
15
90 Day Published Submissions
3 Dec '24
Last Published Submission
Submitted 10 Vulnerabilities
Submitted 10 Vulnerabilities
November 22, 2024
Submitted 5 Vulnerabilities
Submitted 5 Vulnerabilities
November 20, 2024
Submitted 1 Vulnerability
Submitted 1 Vulnerability
November 20, 2024
Submitted XSS Vulnerability
Submitted XSS Vulnerability
November 20, 2024

Showing 101-120 of 290 Vulnerabilities

Title CVE ID CVSS Vector Date
Moka Get Posts Shortcode <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51804 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Multi-day Booking Calendar <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51873 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Multifox Plus <= 1.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51916 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Multiple Votes in one page <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51917 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
My Restaurant Menu <= 0.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51849 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Sell Media File with Stripe <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51892 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Cookie Nonsense for YT <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51933 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
活动链接推广插件 <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51814 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
yPHPlista <= 1.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51805 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Website remote Install vor Gravity, WPForms, Formidable, Ninja, Caldera <= 4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-52347 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
WP PagSeguro Payments <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51847 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
WP Listings Pro <= 3.0.14 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51903 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
EventPress <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51861 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
WP Agenda <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51924 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Websand Subscription Form <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51923 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
WE – Client Logo Carousel <= 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51821 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Wd-image-magnifier-xoss <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51840 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
VP Sitemap <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51922 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Utech Spinning Earth <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51839 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024
Ultimate Accordion <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51797 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N November 8, 2024

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation