Wordfence Intelligence   >   Vulnerability Researchers   >   cydave

cydave

30
All Time Ranking
89
All Time Discoveries

Showing 61-80 of 89 Vulnerabilities

Personal Dictionary <= 1.3.3 - Unauthenticated SQL Injection
9.8
CVE-2022-1013
Apr 18, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Ubigeo de Perú para Woocommerce y WordPress <= 3.6.3 - Unauthenticated SQL Injection
6.5
CVE-2022-0814
Apr 18, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
SiteSuperCharger <= 5.1.10 - Unauthenticated SQL Injection
9.8
CVE-2022-0771
Apr 17, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Product Filter For WooCommerce Product <= 1.3.1 - Unauthenticated SQL Injection
7.5
CVE ID Unknown
Apr 14, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Sitemap by click5 <= 1.0.35 - Unauthenticated Arbitrary Options Update
6.5
CVE-2022-0952
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Users Ultra Membership, Users Community and Member Profiles With PayPal Integration Plugin <= 3.1.0 - Unauthenticated SQL Injection
9.8
CVE-2022-0769
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Documentor – Create Product Documentation <= 1.5.3 - Unauthenticated SQL Injection
9.8
CVE-2022-0773
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Multiple Shipping Address Woocommerce < 2.0 - Unauthenticated SQL Injection
6.5
CVE-2022-0783
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Daily Prayer Time < 2022.03.01 - Unauthenticated SQL Injection
9.8
CVE-2022-0785
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
BadgeOS <= 3.7.0 - Unauthenticated SQL Injection
9.8
CVE-2022-0817
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Web To Print Shop : uDraw <= 3.3.3 - Unauthenticated Arbitrary File Access
7.4
CVE-2022-0656
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
WP Video Gallery <= 1.7.1 - SQL Injection
6.5
CVE-2022-0826
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
SEMA API <= 3.64 - SQL Injection
9.8
CVE-2022-0836
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
5 Stars Rating Funnel <= 1.2.53 - Unauthenticated SQL Injection
9.8
CVE-2022-0657
Apr 13, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Order Listener for WooCommerce – Play Sounds Instantly on New Orders <= 3.2.1 - Unauthenticated SQL Injection
6.5
CVE-2022-0948
Apr 12, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Master Elements <= 8.0 - Unauthenticated SQL injection
9.8
CVE-2022-0693
Apr 11, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
SearchIQ – The Search Solution <= 3.8 - Unauthenticated Stored Cross-Site Scripting
7.2
CVE-2022-0780
Apr 11, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Donations <= 1.8 - Unauthenticated SQL Injection
9.8
CVE-2022-0782
Mar 29, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
WP Block and Stop Bad Bots <= 6.92 - SQL Injection
9.8
CVE-2022-0949
Mar 16, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Title Experiments Free <= 9.0.0 - SQL Injection
9.8
CVE-2022-0784
Mar 7, 2022
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Title CVE ID CVSS Vector Date
Personal Dictionary <= 1.3.3 - Unauthenticated SQL Injection CVE-2022-1013 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 18, 2022
Ubigeo de Perú para Woocommerce y WordPress <= 3.6.3 - Unauthenticated SQL Injection CVE-2022-0814 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N April 18, 2022
SiteSuperCharger <= 5.1.10 - Unauthenticated SQL Injection CVE-2022-0771 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 17, 2022
Product Filter For WooCommerce Product <= 1.3.1 - Unauthenticated SQL Injection 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N April 14, 2022
Sitemap by click5 <= 1.0.35 - Unauthenticated Arbitrary Options Update CVE-2022-0952 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L April 13, 2022
Users Ultra Membership, Users Community and Member Profiles With PayPal Integration Plugin <= 3.1.0 - Unauthenticated SQL Injection CVE-2022-0769 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 13, 2022
Documentor – Create Product Documentation <= 1.5.3 - Unauthenticated SQL Injection CVE-2022-0773 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 13, 2022
Multiple Shipping Address Woocommerce < 2.0 - Unauthenticated SQL Injection CVE-2022-0783 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N April 13, 2022
Daily Prayer Time < 2022.03.01 - Unauthenticated SQL Injection CVE-2022-0785 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 13, 2022
BadgeOS <= 3.7.0 - Unauthenticated SQL Injection CVE-2022-0817 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 13, 2022
Web To Print Shop : uDraw <= 3.3.3 - Unauthenticated Arbitrary File Access CVE-2022-0656 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N April 13, 2022
WP Video Gallery <= 1.7.1 - SQL Injection CVE-2022-0826 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N April 13, 2022
SEMA API <= 3.64 - SQL Injection CVE-2022-0836 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 13, 2022
5 Stars Rating Funnel <= 1.2.53 - Unauthenticated SQL Injection CVE-2022-0657 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 13, 2022
Order Listener for WooCommerce – Play Sounds Instantly on New Orders <= 3.2.1 - Unauthenticated SQL Injection CVE-2022-0948 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N April 12, 2022
Master Elements <= 8.0 - Unauthenticated SQL injection CVE-2022-0693 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 11, 2022
SearchIQ – The Search Solution <= 3.8 - Unauthenticated Stored Cross-Site Scripting CVE-2022-0780 7.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N April 11, 2022
Donations <= 1.8 - Unauthenticated SQL Injection CVE-2022-0782 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H March 29, 2022
WP Block and Stop Bad Bots <= 6.92 - SQL Injection CVE-2022-0949 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H March 16, 2022
Title Experiments Free <= 9.0.0 - SQL Injection CVE-2022-0784 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H March 7, 2022

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation