TRA-2025-50
Medium Ultimate Dashboard
Exposed API Key
2025
View
Vulnerability Research
Security vulnerabilities I've discovered and responsibly disclosed since 2020.
TOTAL CVES
43
CRITICAL FINDINGS
10
YEARS ACTIVE
6
CTRL + K
TRA-2025-34
High BentoML
SSRF Bypass
2025
View
TRA-2025-33
Medium Feed Them Social
Exposed API Key
2025
View
TRA-2025-32
Medium WP Social Ninja
Exposed API Key
2025
View
CVE-2025-2304
High Camaleon CMS
Privilege Escalation
2025
View
CVE-2024-12015
High Project Manager
SQL Injection
2024
View
CVE-2024-10859
Critical Surecart
SQL Injection
2024
View
CVE-2024-9148
Medium Flowise
Stored XSS
2024
View
CVE-2024-8182
High Flowise
Denial of Service
2024
View
CVE-2024-7790
Medium DevikaAI
Stored XSS
2024
View
CVE-2024-7297
High Langflow
Privilege Escalation
2024
View
CVE-2024-4960
Medium WP RSS Aggregator
Reflected XSS
2024
View
CVE-2024-4959
Medium Solidus
Stored XSS
2024
View
CVE-2024-1063
Medium AppWrite
Blind SSRF
2024
View
CVE-2024-1061
Critical HTML5 Video Player
SQL Injection
2024
View
CVE-2023-6360
Critical My Calendar
SQL Injection
2023
View
CVE-2023-4137
Medium AYS Popup Box
Reflected XSS
2023
View
CVE-2023-28667
Critical Lead Generated
Insecure Deserialization
2023
View
CVE-2023-28666
Medium InPost Gallery
Reflected XSS
2023
View
CVE-2023-28665
Medium Bulk Price Update
Reflected XSS
2023
View
CVE-2023-28664
Medium MDTF – Meta Data Filter
Reflected XSS
2023
View
CVE-2023-28663
High Formidable PRO2PDF
SQL Injection
2023
View
CVE-2023-28662
Critical Gift Vouchers and Packages
SQL Injection
2023
View
CVE-2023-28661
High WP Popup Banners
SQL Injection
2023
View
CVE-2023-28660
High Events Made Easy
SQL Injection
2023
View
CVE-2023-28659
High Waiting: One-click countdowns
SQL Injection
2023
View
CVE-2023-28017
Medium CraftCMS
Stored XSS
2023
View
CVE-2023-26326
Critical BuddyForms
Insecure Deserialization
2023
View
CVE-2023-26325
High ReviewX
SQL Injection
2023
View
CVE-2023-23492
Medium Login with Phone Number
Reflected XSS
2023
View
CVE-2023-23491
Medium Quick Event Manager
Reflected XSS
2023
View
CVE-2023-23490
High Survey Maker
SQL Injection
2023
View
CVE-2023-23489
Critical Easy Digital Downloads
SQL Injection
2023
View
CVE-2023-23488
Critical Paid Memberships Pro
SQL Injection
2023
View
CVE-2023-0448
Medium WP Helper Lite
Reflected XSS
2023
View
CVE-2022-1731
Critical Metasonic Doc WebClient
SQL Injection
2022
View
CVE-2022-38131
Medium RStudio Connect
Open Redirect
2022
View
CVE-2021-41262
High Galette
SQL Injection
2021
View
CVE-2021-41261
Medium Galette
Stored XSS
2021
View
CVE-2021-41260
Medium Galette
CSRF
2021
View
CVE-2020-25070
Medium USVN
CSRF
2020
View
CVE-2020-25069
Critical USVN
RCE
2020
View
CVE-2020-15081
Medium PrestaShop
Information Disclosure
2020
View
Showing 43 of 43 results