Table dibawah ini mungkin tidak terupdate sepenuhnya, beberapa CVE masih menunggu untuk dipublish. Oleh karena itu, Anda bisa mengunjungi URL berikut ini untuk informasi lebih lanjut dan pembaruan terkini:
- https://patchstack.com/database/researcher/a7793aa9-bfad-45bf-93db-e582adbb4bc6
- https://www.wordfence.com/threat-intel/vulnerabilities/researchers/akas-wisnu-aji
| Title | CVE ID | Date |
|---|---|---|
| CarZine <= 1.4.6 - Reflected Cross-Site Scripting | CVE-2025-23981 | January 18, 2025 |
| flashy <= 1.2.1 - Reflected Cross-Site Scripting | CVE-2025-23979 | January 18, 2025 |
| Ghostwriter <= 1.4 - Reflected Cross-Site Scripting | CVE-2025-23988 | January 18, 2025 |
| my white <= 2.0.8 - Reflected Cross-Site Scripting | CVE-2025-22678 | January 18, 2025 |
| Tiki Time <= 1.3 - Reflected Cross-Site Scripting | CVE-2025-23986 | January 18, 2025 |
| Tijaji <= 1.43 - Reflected Cross-Site Scripting | CVE-2025-23983 | January 18, 2025 |
| UltraLight <= 1.2 - Reflected Cross-Site Scripting | CVE-2025-23998 | January 18, 2025 |
| Tuaug4 <= 1.4 - Reflected Cross-Site Scripting | CVE-2025-22687 | January 18, 2025 |
| Tantyyellow <= 1.0.0.5 - Reflected Cross-Site Scripting | CVE-2025-23995 | January 17, 2025 |
| Js O3 Lite <= 1.5.8.2 - Reflected Cross-Site Scripting | CVE-2025-22792 | January 13, 2025 |
| moseter <= 1.3.1 - Reflected Cross-Site Scripting | CVE-2025-22790 | January 13, 2025 |
| offset writing <= 1.2 - Reflected Cross-Site Scripting | CVE-2025-22791 | January 13, 2025 |
| polka dots <= 1.2 - Reflected Cross-Site Scripting | CVE-2025-22789 | January 13, 2025 |
| Multiple Themes by gavias <= Various Versions - Reflected Cross-Site Scripting | CVE-2024-43334 | January 6, 2025 |
| Tydskrif <= 1.1.3 - Reflected Cross-Site Scripting | CVE-2024-54257 | December 5, 2024 |
| ReConstruction <= 1.4.7 - Reflected Cross-Site Scripting | CVE-2024-52417 | November 13, 2024 |
| Gameplan <= 1.5.10 - Reflected Cross-Site Scripting | CVE-2024-52418 | November 13, 2024 |
| Js paper <= 2.5.7 - Reflected Cross-Site Scripting | CVE-2024-49678 | October 21, 2024 |
| Digitally <= 1.0.8 - Reflected Cross-Site Scripting | CVE-2024-49309 | October 15, 2024 |
| my flatonica <= 0.0.8 & my wooden under construction <= 2.0.7 - Reflected Cross-Site Scripting | CVE-2024-49269 | October 14, 2024 |
| Disconnected <= 1.3.0 - Reflected Cross-Site Scripting | CVE-2024-49268 | October 14, 2024 |
| Viala <= 1.3.1 - Reflected Cross-Site Scripting | CVE-2024-44029 | September 24, 2024 |
| Opor Ayam <= 1.8 - Reflected Cross-Site Scripting | CVE-2024-44053 | August 29, 2024 |
| Filmix <= 1.1 - Reflected Cross-Site Scripting | CVE-2024-44060 | August 29, 2024 |
| IntoTheDark <= 1.0.5 - Reflected Cross-Site Scripting | CVE-2024-43958 | August 26, 2024 |
| Tutor LMS <= 2.7.2 - Authenticated (Administrator+) SQL Injection | CVE-2024-43282 | August 16, 2024 |
| Purity Of Soul <= 1.9 - Reflected Cross-Site Scripting | CVE-2024-43348 | August 16, 2024 |
| WP Dashboard Notes <= 1.0.11 - Authenticated (Subscriber+) Stored Cross-Site Scripting | CVE-2024-43226 | August 9, 2024 |
| Tutor LMS <= 2.7.3 - Authenticated (Instructor+) Stored Cross-Site Scripting | CVE-2024-43231 | August 9, 2024 |
| Tutor LMS <= 2.7.3 - Missing Authorization | CVE-2024-43142 | August 7, 2024 |
| Easy Digital Downloads <= 3.2.12 - Missing Authorization | CVE-2024-43162 | August 7, 2024 |
| Easy Digital Downloads <= 3.2.12 - Unauthenticated SQL Injection | CVE-2024-5057 | August 1, 2024 |
| VikRentCar <= 1.4.0 - Unauthenticated SQL Injection | CVE-2024-39653 | August 1, 2024 |
| Salon booking system <= 10.7 - Authenticated (Administrator+) SQL Injection | CVE-2024-39658 | August 1, 2024 |
| Eventin <= 4.0.5 - Authenticated (Author+) Stored Cross-Site Scripting | CVE-2024-39648 | August 1, 2024 |
| WP Fast Total Search <= 1.68.232 - Unauthenticated Stored Cross-Site Scripting | CVE-2024-39663 | August 1, 2024 |
| Barcode Scanner with Inventory & Order Manager <= 1.6.1 - Authenticated (Subscriber+) SQL Injection | CVE-2024-38708 | July 11, 2024 |
| Tutor LMS <= 2.7.2 - Authenticated (Tutor Instructor+) Stored Cross-Site Scripting | CVE-2024-37947 | July 10, 2024 |
| SmartMag <= 9.3.0 - Unauthenticated Sensitive Information Exposure via Log Files | CVE-2024-37930 | July 9, 2024 |
| Plugin Notes Plus <= 1.2.6 - Authenticated (Administrator+) Stored Cross-Site Scripting | CVE-2024-37561 | July 9, 2024 |
| Simple Post Notes <= 1.7.7 - Authenticated (Administrator+) Stored Cross-Site Scripting | CVE-2024-37562 | July 9, 2024 |
| Counterpoint <= 1.8.1 - Reflected Cross-Site Scripting | CVE-2024-37559 | July 8, 2024 |
| Eventin <= 3.3.57 - Authenticated (Author+) Stored Cross-Site Scripting | CVE-2024-37507 | July 4, 2024 |
| HelloAsso <= 1.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | CVE-2024-37488 | July 4, 2024 |
| Progress Planner <= 0.9.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting | CVE-2024-37422 | June 27, 2024 |