🔎 Have you found a vulnerability in a WordPress plugin or theme? Report vulnerabilities in WordPress plugins and themes through our bug bounty program and earn a bounty on all in-scope submissions, while we handle the responsible disclosure process on your behalf.

Wordfence Intelligence > Vulnerability Researchers > Sharanabasappa

Sharanabasappa

175

All Time Ranking

All Time Discoveries

13 Vulnerabilities

Floating Social Media Links <= 1.5.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-37545

Jul 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Link To Bible <= 2.5.9 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-37538

Jul 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Simple Social Share <= 3.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-37551

Jul 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

WordPress Notification Bar <= 1.3.10 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-37556

Jul 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

gee Search Plus, improved WordPress search <= 1.4.4 - Authenticated (Admin+) Stored Cross-Site Scripting

5.5

CVE-2024-34560

May 7, 2024

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N

WPCS ( WordPress Custom Search ) <= 1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-34418

May 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Configure Login Timeout <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-34419

May 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Featured Content Gallery <= 3.2.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-34424

May 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Comments Evolved for WordPress <= 1.6.3 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-34420

May 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

QuickieBar <= 1.8.4 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-34425

May 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Viet Nam Affiliate <= 1.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-34417

May 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Viet Affiliate Link <=1.2 - Authenticated (Administrator+) Stored Cross-Site Scripting

4.4

CVE-2024-34422

May 6, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Search Keyword Redirect <= 1.0 - Authenticated (Admin+) Stored Cross-Site Scripting

4.4

CVE-2024-32080

Apr 11, 2024

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N

Title	CVE ID	CVSS	Vector	Date
Floating Social Media Links <= 1.5.2 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-37545	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	July 6, 2024
Link To Bible <= 2.5.9 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-37538	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	July 6, 2024
Simple Social Share <= 3.0 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-37551	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	July 6, 2024
WordPress Notification Bar <= 1.3.10 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-37556	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	July 6, 2024
gee Search Plus, improved WordPress search <= 1.4.4 - Authenticated (Admin+) Stored Cross-Site Scripting	CVE-2024-34560	5.5	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N	May 7, 2024
WPCS ( WordPress Custom Search ) <= 1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-34418	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	May 6, 2024
Configure Login Timeout <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-34419	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	May 6, 2024
Featured Content Gallery <= 3.2.0 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-34424	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	May 6, 2024
Comments Evolved for WordPress <= 1.6.3 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-34420	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	May 6, 2024
QuickieBar <= 1.8.4 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-34425	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	May 6, 2024
Viet Nam Affiliate <= 1.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-34417	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	May 6, 2024
Viet Affiliate Link <=1.2 - Authenticated (Administrator+) Stored Cross-Site Scripting	CVE-2024-34422	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	May 6, 2024
Search Keyword Redirect <= 1.0 - Authenticated (Admin+) Stored Cross-Site Scripting	CVE-2024-32080	4.4	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N	April 11, 2024

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation