WordPress Frontend Admin by DynamiApps Plugin <= 3.7.11 is vulnerable to Cross Site Scripting (XSS)

Software Frontend Admin by DynamiApps Type Plugin Vulnerable versions = 3.7.11 Fixed in 3.8.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4912bd56d667 Credits Rafie Muhammad...

WordPress WP Mail Log Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WP Mail Log Type Plugin Vulnerable versions = 1.0.2 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 0ce743ed2f3d Credits Rafie Muhammad Patchstack Required...

WordPress Stop WP Emails Going to Spam Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Stop WP Emails Going to Spam Type Plugin Vulnerable versions = 1.1.6 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID fd8327c521e3 Credits Rafie Muhammad Patchsta...

WordPress Fast Custom Social Share by CodeBard Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Fast Custom Social Share by CodeBard Type Plugin Vulnerable versions = 1.0.9 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Codebard PSID d404bf7e4f09 Credits Rafie Muhammad...

WordPress WP Travel Plugin <= 4.1.4 is vulnerable to Cross Site Scripting (XSS)

Software WP Travel Type Plugin Vulnerable versions = 4.1.4 Fixed in 4.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID c5dc47fc1dfb Credits Rafie Muhammad Patchstack Required privile...

WordPress Salon booking system Plugin <= 8.4.7 is vulnerable to Cross Site Scripting (XSS)

Software Salon booking system Type Plugin Vulnerable versions = 8.4.7 Fixed in 8.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 36c49c980842 Credits Rafie Muhammad Patchstack...

WordPress Better Notifications for WP Plugin <= 1.6.14 is vulnerable to Cross Site Scripting (XSS)

Software Better Notifications for WP Type Plugin Vulnerable versions = 1.6.14 Fixed in 1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Made with Fuel Ltd. PSID 93575c532e5f Credits Rafie Muhammad...

WordPress Easy Watermark Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Easy Watermark Type Plugin Vulnerable versions = 1.0.6 Fixed in 1.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 674b7aa66623 Credits Rafie Muhammad Patchstack Required...

WordPress WP Group Promoter Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Software WP Group Promoter Type Plugin Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 308d9974dbb0 Credits Rafie Muhammad Patchstack Requir...

WordPress eaSYNC Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS)

Software eaSYNC Type Plugin Vulnerable versions = 1.3.6 Fixed in 1.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6ed96527855d Credits Rafie Muhammad Patchstack Required...

WordPress Scrollbar Customizer Plugin <= 1.5.0 is vulnerable to Cross Site Scripting (XSS)

Software Scrollbar Customizer Type Plugin Vulnerable versions = 1.5.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 71d91cdab1e8 Credits Rafie Muhammad Patchstack...

WordPress Wholesale For WooCommerce Lite – B2B & B2C Solution Plugin < 1.6.5 is vulnerable to Cross Site Scripting (XSS)

Software Wholesale For WooCommerce Lite – B2B & B2C Solution Type Plugin Vulnerable versions 1.6.5 Fixed in 1.6.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7ae9861c90c1 Credit...

WordPress Random Sorting Order for WooCommerce Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Random Sorting Order for WooCommerce Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d04e48cae75b Credits Rafie Muhammad...

WordPress Cart tracking for WooCommerce Plugin < 1.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Cart tracking for WooCommerce Type Plugin Vulnerable versions 1.0.11 Fixed in 1.0.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dcb0e41e383c Credits Rafie Muhammad...

WordPress TK Google Fonts GDPR Compliant Plugin < 2.2.11 is vulnerable to Cross Site Scripting (XSS)

Software TK Google Fonts GDPR Compliant Type Plugin Vulnerable versions 2.2.11 Fixed in 2.2.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 33cf3898b186 Credits Rafie Muhammad...

WordPress Techism Theme <= 3.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Techism Type Theme Vulnerable versions = 3.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9b2585ea0b5b Credits Rafie Muhammad Patchstack Required privileg...

WordPress Marijuana Age Verify Plugin < 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Marijuana Age Verify Type Plugin Vulnerable versions 1.5.2 Fixed in 1.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID db6ca466f541 Credits Rafie Muhammad Patchstack...

WordPress Accordion & FAQ – Helpie WordPress Accordion FAQ Plugin Plugin < 1.9.13 is vulnerable to Cross Site Scripting (XSS)

Software Accordion & FAQ – Helpie WordPress Accordion FAQ Plugin Type Plugin Vulnerable versions 1.9.13 Fixed in 1.9.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 753ef980e693...

WordPress WP Adminify Plugin < 3.1.4 is vulnerable to Cross Site Scripting (XSS)

Software WP Adminify Type Plugin Vulnerable versions 3.1.4 Fixed in 3.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0e3546694fbf Credits Rafie Muhammad Patchstack Required...

WordPress Bulk Edit and Create User Profiles – WP Sheet Editor Plugin < 1.5.26 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Edit and Create User Profiles – WP Sheet Editor Type Plugin Vulnerable versions 1.5.26 Fixed in 1.5.26 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8d00b38962a5...