Tin Duong

177
All Time Ranking
10
All Time Discoveries

10 Vulnerabilities

Title CVE ID CVSS Vector Date
Advanced Contact Form 7 DB <= 1.6.2 - SQL Injection CVE-2019-13571 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H September 22, 2020
NextGEN Gallery <= 3.2.10 - SQL Injection CVE-2019-14314 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H August 27, 2019
GiveWP - Donation Plugin and Fundraising Platform <= 2.5.0 - SQL Injection CVE-2019-13578 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H August 12, 2019
Popup Builder <= 3.44 - SQL Injection CVE-2019-14695 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H August 6, 2019
Photo Gallery by 10Web <= 1.5.30 - SQL Injection CVE-2019-14313 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 26, 2019
Blog2Social: Social Media Auto Post & Scheduler <= 5.5.0 - SQL Injection CVE-2019-13572 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 25, 2019
Email Subscribers & Newsletters <= 4.1.7 - SQL Injection CVE-2019-13569 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 22, 2019
Contact Form, Drag and Drop Form Builder for WordPress – Everest Forms <= 1.4.9 - SQL Injection CVE-2019-13575 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 18, 2019
FV Flowplayer Video Player <= 7.3.18.727 - SQL Injection CVE-2019-13573 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H July 11, 2019
AdRotate – Ad manager & AdSense Ads <= 5.2 - Authenticated SQL Injection CVE-2019-13570 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H July 11, 2019

Share this researcher's vulnerability discoveries

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation