🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

Wordfence Intelligence > Vulnerability Researchers > Dhabaleshwar Das

Dhabaleshwar Das

All Time Ranking

143

All Time Discoveries

Showing 81-100 of 143 Vulnerabilities

WebinarIgnition <= 3.05.8 - Cross-Site Request Forgery

4.3

CVE-2024-32445

Apr 12, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

WP EasyCart <= 5.5.19 - Cross-Site Request Forgery

4.3

CVE-2024-32452

Apr 12, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

WooCommerce UPS Shipping – Live Rates and Access Points <= 2.2.4 - Cross-Site Request Forgery

4.3

CVE-2024-31944

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

NextMove Lite <= 2.18.1 - Cross-Site Request Forgery

4.3

CVE-2024-32104

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Appsero <= 2.0.0 - Missing Authorization via handle_optin_optout

4.3

CVE-2024-32110

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Before And After <= 3.9 - Cross-Site Request Forgery

4.3

CVE-2024-32084

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Church Admin <= 4.0.27 - Cross-Site Request Forgery

4.3

CVE-2024-32090

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Church Content – Sermons, Events and More <= 2.6 - Cross-Site Request Forgery to Notice Dismissal

4.3

CVE-2024-32094

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Coming Soon Page, Under Construction & Maintenance Mode by SeedProd <= 6.15.20 - Cross-Site Request Forgery to Notice Dismissal

4.3

CVE-2024-32088

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Digital Publications by Supsystic <= 1.7.7 - Cross-Site Request Forgery

4.3

CVE-2024-32089

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

MultiParcels Shipping For WooCommerce < 1.16.9 - Cross-Site Request Forgery

4.3

CVE-2024-32095

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Novelist <= 1.2.2 - Cross-Site Request Forgery

4.3

CVE-2024-32093

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Email Marketing for WooCommerce by Omnisend <= 1.14.3 - Cross-Site Request Forgery

4.3

CVE-2024-32101

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Siteimprove <= 2.0.6 - Cross-Site Request Forgery

4.3

CVE-2024-32103

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

WP Mail Catcher <= 2.1.6 - Cross-Site Request Forgery

4.3

CVE-2024-32099

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

WP Migration Plugin DB & Files – WP Synchro <= 1.11.2 - Cross-Site Request Forgery

4.3

CVE-2024-32096

Apr 11, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Inisev Analyst Module <= Various Versions - Missing Authorization

4.3

CVE-2024-31435

Apr 10, 2024

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Extra Product Options Builder for WooCommerce <= 1.2.104 - Cross-Site Request Forgery to Notice Dismissal

4.3

CVE-2024-31940

Apr 10, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Blocksy <= 2.0.22 - Cross-Site Request Forgery to Notice Dismissal

4.3

CVE-2024-31382

Apr 10, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Calendarista Basic Edition <= 3.0.2 - Cross-Site Request Forgery

4.3

CVE-2024-31942

Apr 10, 2024

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Title	CVE ID	CVSS	Vector	Date
WebinarIgnition <= 3.05.8 - Cross-Site Request Forgery	CVE-2024-32445	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 12, 2024
WP EasyCart <= 5.5.19 - Cross-Site Request Forgery	CVE-2024-32452	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 12, 2024
WooCommerce UPS Shipping – Live Rates and Access Points <= 2.2.4 - Cross-Site Request Forgery	CVE-2024-31944	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
NextMove Lite <= 2.18.1 - Cross-Site Request Forgery	CVE-2024-32104	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Appsero <= 2.0.0 - Missing Authorization via handle_optin_optout	CVE-2024-32110	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 11, 2024
Before And After <= 3.9 - Cross-Site Request Forgery	CVE-2024-32084	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Church Admin <= 4.0.27 - Cross-Site Request Forgery	CVE-2024-32090	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Church Content – Sermons, Events and More <= 2.6 - Cross-Site Request Forgery to Notice Dismissal	CVE-2024-32094	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Coming Soon Page, Under Construction & Maintenance Mode by SeedProd <= 6.15.20 - Cross-Site Request Forgery to Notice Dismissal	CVE-2024-32088	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Digital Publications by Supsystic <= 1.7.7 - Cross-Site Request Forgery	CVE-2024-32089	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
MultiParcels Shipping For WooCommerce < 1.16.9 - Cross-Site Request Forgery	CVE-2024-32095	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Novelist <= 1.2.2 - Cross-Site Request Forgery	CVE-2024-32093	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Email Marketing for WooCommerce by Omnisend <= 1.14.3 - Cross-Site Request Forgery	CVE-2024-32101	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Siteimprove <= 2.0.6 - Cross-Site Request Forgery	CVE-2024-32103	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
WP Mail Catcher <= 2.1.6 - Cross-Site Request Forgery	CVE-2024-32099	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
WP Migration Plugin DB & Files – WP Synchro <= 1.11.2 - Cross-Site Request Forgery	CVE-2024-32096	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 11, 2024
Inisev Analyst Module <= Various Versions - Missing Authorization	CVE-2024-31435	4.3	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N	April 10, 2024
Extra Product Options Builder for WooCommerce <= 1.2.104 - Cross-Site Request Forgery to Notice Dismissal	CVE-2024-31940	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 10, 2024
Blocksy <= 2.0.22 - Cross-Site Request Forgery to Notice Dismissal	CVE-2024-31382	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 10, 2024
Calendarista Basic Edition <= 3.0.2 - Cross-Site Request Forgery	CVE-2024-31942	4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N	April 10, 2024

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation