Wordfence Intelligence   >   Vulnerability Researchers   >   SOPROBRO

SOPROBRO

13
All Time Ranking
241
All Time Discoveries
0
90 Day Published Submissions
N/A
Last Published Submission

Showing 141-160 of 241 Vulnerabilities

Media Modal <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51604
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
bpmn.io <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51577
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Genoo <= 6.0.10 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51605
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Audio Comparison Lite <= 3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51627
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Show Visitor IP Address <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-50538
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Hover Video Preview <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-50552
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Selar.co Widget <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51598
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
LH QR Codes <= 1.06 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51572
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
3D Presentation <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51578
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
AwesomePress <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51616
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
WM Zoom <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-50556
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Reftagger Shortcode <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51612
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Business <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51596
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Gmap Point List <= 1.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51594
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
EndomondoWP <= 0.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-50551
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Курс валют UAH <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51593
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Kento Ads Rotator <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51583
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
AMP Img Shortcode <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51576
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Sided <= 1.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-50554
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Aajoda Testimonials <= 2.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2024-51614
Oct 31, 2024
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
Title CVE ID CVSS Vector Date
Media Modal <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51604 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
bpmn.io <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51577 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Genoo <= 6.0.10 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51605 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Audio Comparison Lite <= 3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51627 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Show Visitor IP Address <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-50538 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Hover Video Preview <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-50552 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Selar.co Widget <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51598 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
LH QR Codes <= 1.06 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51572 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
3D Presentation <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51578 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
AwesomePress <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51616 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
WM Zoom <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-50556 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Reftagger Shortcode <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51612 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Business <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51596 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Gmap Point List <= 1.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51594 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
EndomondoWP <= 0.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-50551 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Курс валют UAH <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51593 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Kento Ads Rotator <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51583 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
AMP Img Shortcode <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51576 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Sided <= 1.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-50554 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024
Aajoda Testimonials <= 2.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-51614 6.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N October 31, 2024

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation