🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

Wordfence Intelligence > Vulnerability Researchers > Abdi Pranata

Abdi Pranata

All Time Ranking

266

All Time Discoveries

Showing 1-20 of 266 Vulnerabilities

Custom WooCommerce Checkout Fields Editor <= 1.3.1 - Missing Authorization

4.3

CVE-2024-33956

Apr 30, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Google Typography <= 1.1.2 - Missing Authorization

4.3

CVE-2024-33942

Apr 30, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

SP Project & Document Manager <= 4.69 - Missing Authorization

4.3

CVE-2024-33923

Apr 29, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

ReviewX <= 1.6.21 - Missing Authorization

4.3

CVE-2024-33921

Apr 29, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Progressive WordPress (PWA) <= 2.1.13 - Missing Authorization

4.3

CVE-2024-33937

Apr 29, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Embed Google Fonts <= 3.1.0 - Missing Authorization

4.3

CVE-2024-33925

Apr 29, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Customify Site Library <= 0.0.9 - Unauthenticated Remote Code Execution

10.0

CVE-2024-33644

Apr 25, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Vitepos <= 3.0.1 - Missing Authorization

4.3

CVE-2024-33574

Apr 25, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

EPROLO Dropshipping <= 1.7.1 - Missing Authorization

4.3

CVE-2024-33573

Apr 25, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

WP Media Category Management <= 2.2 - Reflected Cross-Site Scripting

6.1

CVE-2024-32950

Apr 22, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

WordPress Meta Data and Taxonomies Filter (MDTF) <= 1.3.3 - Missing Authorization

4.3

CVE-2024-32818

Apr 22, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

WP LinkedIn Auto Publish <= 8.11 - Missing Authorization

4.3

CVE-2024-32797

Apr 22, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

WP GoToWebinar <= 14.46 - Missing Authorization

4.3

CVE-2024-32804

Apr 22, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Secure Copy Content Protection and Content Locking <= 3.7.1 - Missing Authorization

4.3

CVE-2024-32787

Apr 22, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CookieHub <= 1.1.0 - Missing Authorization

5.3

CVE-2024-32784

Apr 22, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Advanced Testimonial Carousel for Elementor <= 3.0.0 - Missing Authorization

5.3

CVE-2024-32783

Apr 22, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

WPC Frequently Bought Together for WooCommerce <= 7.0.3 - Missing Authorization

4.3

CVE-2024-32687

Apr 17, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Order Limit for WooCommerce <= 2.0.0 - Missing Authorization

5.3

CVE-2024-32675

Apr 17, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Custom Thank You Page Customize For WooCommerce by Binary Carpenter <= 1.4.13 - Missing Authorization

4.3

CVE-2024-32517

Apr 15, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

WPC Grouped Product for WooCommerce <= 4.4.2 - Missing Authorization

4.3

CVE-2024-32520

Apr 15, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Title	CVE ID	CVSS	Vector	Date
Custom WooCommerce Checkout Fields Editor <= 1.3.1 - Missing Authorization	CVE-2024-33956	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 30, 2024
Google Typography <= 1.1.2 - Missing Authorization	CVE-2024-33942	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 30, 2024
SP Project & Document Manager <= 4.69 - Missing Authorization	CVE-2024-33923	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 29, 2024
ReviewX <= 1.6.21 - Missing Authorization	CVE-2024-33921	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 29, 2024
Progressive WordPress (PWA) <= 2.1.13 - Missing Authorization	CVE-2024-33937	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 29, 2024
Embed Google Fonts <= 3.1.0 - Missing Authorization	CVE-2024-33925	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 29, 2024
Customify Site Library <= 0.0.9 - Unauthenticated Remote Code Execution	CVE-2024-33644	10.0	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H	April 25, 2024
Vitepos <= 3.0.1 - Missing Authorization	CVE-2024-33574	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 25, 2024
EPROLO Dropshipping <= 1.7.1 - Missing Authorization	CVE-2024-33573	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 25, 2024
WP Media Category Management <= 2.2 - Reflected Cross-Site Scripting	CVE-2024-32950	6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	April 22, 2024
WordPress Meta Data and Taxonomies Filter (MDTF) <= 1.3.3 - Missing Authorization	CVE-2024-32818	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 22, 2024
WP LinkedIn Auto Publish <= 8.11 - Missing Authorization	CVE-2024-32797	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 22, 2024
WP GoToWebinar <= 14.46 - Missing Authorization	CVE-2024-32804	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L	April 22, 2024
Secure Copy Content Protection and Content Locking <= 3.7.1 - Missing Authorization	CVE-2024-32787	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 22, 2024
CookieHub <= 1.1.0 - Missing Authorization	CVE-2024-32784	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	April 22, 2024
Advanced Testimonial Carousel for Elementor <= 3.0.0 - Missing Authorization	CVE-2024-32783	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	April 22, 2024
WPC Frequently Bought Together for WooCommerce <= 7.0.3 - Missing Authorization	CVE-2024-32687	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 17, 2024
Order Limit for WooCommerce <= 2.0.0 - Missing Authorization	CVE-2024-32675	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	April 17, 2024
Custom Thank You Page Customize For WooCommerce by Binary Carpenter <= 1.4.13 - Missing Authorization	CVE-2024-32517	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 15, 2024
WPC Grouped Product for WooCommerce <= 4.4.2 - Missing Authorization	CVE-2024-32520	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 15, 2024

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation