Tin Duong

Wordfence Intelligence   >   Vulnerability Researchers   >   Tin Duong

Vulnerabilities Discovered:

10
All Time Discoveries
0
Discoveries since Sep 1, 2023

10 vulnerabilities

Advanced Contact Form 7 DB <= 1.6.2 - SQL Injection
9.8
CVE-2019-13571
Sep 22, 2020
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
NextGEN Gallery <= 3.2.10 - SQL Injection
9.8
CVE-2019-14314
Aug 27, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
GiveWP - Donation Plugin and Fundraising Platform <= 2.5.0 - SQL Injection
9.8
CVE-2019-13578
Aug 12, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Popup Builder <= 3.44 - SQL Injection
9.8
CVE-2019-14695
Aug 6, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Photo Gallery by 10Web <= 1.5.30 - SQL Injection
9.8
CVE-2019-14313
Jul 26, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Blog2Social: Social Media Auto Post & Scheduler <= 5.5.0 - SQL Injection
9.8
CVE-2019-13572
Jul 25, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Email Subscribers & Newsletters <= 4.1.7 - SQL Injection
9.8
CVE-2019-13569
Jul 22, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Contact Form, Drag and Drop Form Builder for WordPress – Everest Forms <= 1.4.9 - SQL Injection
9.8
CVE-2019-13575
Jul 18, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
FV Flowplayer Video Player <= 7.3.18.727 - SQL Injection
9.8
CVE-2019-13573
Jul 11, 2019
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AdRotate – Ad manager & AdSense Ads <= 5.2 - Authenticated SQL Injection
7.2
CVE-2019-13570
Jul 11, 2019
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Title CVE ID CVSS Vector Date
Advanced Contact Form 7 DB <= 1.6.2 - SQL Injection CVE-2019-13571 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H September 22, 2020
NextGEN Gallery <= 3.2.10 - SQL Injection CVE-2019-14314 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H August 27, 2019
GiveWP - Donation Plugin and Fundraising Platform <= 2.5.0 - SQL Injection CVE-2019-13578 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H August 12, 2019
Popup Builder <= 3.44 - SQL Injection CVE-2019-14695 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H August 6, 2019
Photo Gallery by 10Web <= 1.5.30 - SQL Injection CVE-2019-14313 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 26, 2019
Blog2Social: Social Media Auto Post & Scheduler <= 5.5.0 - SQL Injection CVE-2019-13572 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 25, 2019
Email Subscribers & Newsletters <= 4.1.7 - SQL Injection CVE-2019-13569 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 22, 2019
Contact Form, Drag and Drop Form Builder for WordPress – Everest Forms <= 1.4.9 - SQL Injection CVE-2019-13575 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 18, 2019
FV Flowplayer Video Player <= 7.3.18.727 - SQL Injection CVE-2019-13573 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 11, 2019
AdRotate – Ad manager & AdSense Ads <= 5.2 - Authenticated SQL Injection CVE-2019-13570 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H July 11, 2019

Share this researcher's vulnerability discoveries

All the threat data shared in this database is powered by Wordfence Intelligence Enterprise.
Interested in integrating this data into your platform or network?
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation