Wordfence Intelligence   >   Vulnerability Researchers   >   Rio Darmawan

Rio Darmawan

Organization: Zerobyte

13
All Time Ranking
190
All Time Discoveries

Showing 181-190 of 190 Vulnerabilities

Easy Testimonial Slider and Form <= 1.0.18 - Authenticated (Administrator+) Stored Cross-Site Scripting via settings
4.4
CVE-2023-45754
Oct 12, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
Next Page <= 1.5.2 - Authenticated (Administrator+) Stored Cross-Site Scripting via settings
4.4
CVE-2023-45768
Oct 12, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
Scroll post excerpt <= 8.0 - Authenticated (Administrator+) Stored Cross-Site Scripting
4.4
CVE-2023-45764
Oct 12, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
WP Lightbox 2 <= 3.0.6.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via plugin settings
5.5
CVE-2023-45747
Oct 12, 2023
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N
Simple Tweet <= 1.4.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting via plugin settings
5.5
CVE-2023-45767
Oct 12, 2023
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N
LeadSquared Suite <= 0.7.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via settings
4.4
CVE-2023-45833
Oct 13, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
Triberr <= 4.1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting
4.4
CVE-2023-46199
Oct 18, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
Smart App Banner <= 1.1.3 - Authenticated (Administrator+) Stored Cross-Site Scripting
4.4
CVE-2023-46200
Oct 18, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
WC Captcha <= 1.5 - Authenticated (Administrator+) Stored Cross-Site Scripting
4.4
CVE-2023-46210
Oct 19, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
SAHU TikTok Pixel for E-Commerce <= 1.2.2 - Authenticated (Administrator+) Stored Cross-Site Scripting
4.4
CVE-2023-46642
Oct 25, 2023
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
Title CVE ID CVSS Vector Date
Easy Testimonial Slider and Form <= 1.0.18 - Authenticated (Administrator+) Stored Cross-Site Scripting via settings CVE-2023-45754 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 12, 2023
Next Page <= 1.5.2 - Authenticated (Administrator+) Stored Cross-Site Scripting via settings CVE-2023-45768 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 12, 2023
Scroll post excerpt <= 8.0 - Authenticated (Administrator+) Stored Cross-Site Scripting CVE-2023-45764 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 12, 2023
WP Lightbox 2 <= 3.0.6.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via plugin settings CVE-2023-45747 5.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N October 12, 2023
Simple Tweet <= 1.4.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting via plugin settings CVE-2023-45767 5.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N October 12, 2023
LeadSquared Suite <= 0.7.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via settings CVE-2023-45833 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 13, 2023
Triberr <= 4.1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting CVE-2023-46199 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 18, 2023
Smart App Banner <= 1.1.3 - Authenticated (Administrator+) Stored Cross-Site Scripting CVE-2023-46200 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 18, 2023
WC Captcha <= 1.5 - Authenticated (Administrator+) Stored Cross-Site Scripting CVE-2023-46210 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 19, 2023
SAHU TikTok Pixel for E-Commerce <= 1.2.2 - Authenticated (Administrator+) Stored Cross-Site Scripting CVE-2023-46642 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N October 25, 2023

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation