WordPress Divi Content Restrictor Plugin < 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software Divi Content Restrictor Type Plugin Vulnerable versions 1.4.3 Fixed in 1.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 19d3d4ac2e6a Credits Rafie Muhammad Patchstack...

WordPress WP Travel Engine Plugin < 5.7.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Travel Engine Type Plugin Vulnerable versions 5.7.5 Fixed in 5.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 801294ac323a Credits Rafie Muhammad Patchstack Require...

WordPress Post Grid, Image Gallery & Portfolio for Elementor | PowerFolio Plugin < 3.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Post Grid, Image Gallery & Portfolio for Elementor | PowerFolio Type Plugin Vulnerable versions 3.0.3 Fixed in 3.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Coupon Affiliates Plugin < 5.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Coupon Affiliates Type Plugin Vulnerable versions 5.6.0 Fixed in 5.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer RelyWP PSID de39047c211f Credits Rafie Muhammad Patchstack Required...

WordPress GravityCaptcha Plugin <= 0.5.2 is vulnerable to Cross Site Scripting (XSS)

Software GravityCaptcha Type Plugin Vulnerable versions = 0.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ac93627ffc24 Credits Rafie Muhammad Patchstack Required...

WordPress Custom User Guide Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Custom User Guide Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 73064f77dce5 Credits Rafie Muhammad Patchstack...

WordPress Clean Social Icons Plugin <= 0.9.11 is vulnerable to Cross Site Scripting (XSS)

Software Clean Social Icons Type Plugin Vulnerable versions = 0.9.11 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 073edbf35701 Credits Rafie Muhammad Patchstack...

WordPress Delivery for WooCommerce Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Delivery for WooCommerce Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1dd855f97654 Credits Rafie Muhammad Patchstack...

WordPress Awesome Social Icons Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software Awesome Social Icons Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f6cd734fb895 Credits Rafie Muhammad Patchstack...

WordPress Top Bar – PopUps – by WPOptin Plugin <= 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Software Top Bar – PopUps – by WPOptin Type Plugin Vulnerable versions = 1.2.6 Fixed in 1.2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cc20ab59ac51 Credits Rafie Muhammad...

WordPress Hide Shipping Method For WooCommerce Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Hide Shipping Method For WooCommerce Type Plugin Vulnerable versions = 1.3.2 Fixed in 1.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6e46ad71336a Credits Rafie...

WordPress GFireM Advance Search Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software GFireM Advance Search Type Plugin Vulnerable versions = 1.2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 324100e371c6 Credits Rafie Muhammad Patchstack...

WordPress Super Social Content Locker Lite Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Super Social Content Locker Lite Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 96c47939fcea Credits Rafie Muhammad...

WordPress Checkout with Venmo on Woocommerce Plugin <= 4.1 is vulnerable to Cross Site Scripting (XSS)

Software Checkout with Venmo on Woocommerce Type Plugin Vulnerable versions = 4.1 Fixed in 4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0579a795d0cd Credits Rafie Muhammad...

WordPress WordPress Slider Plugin – Block Slider Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Slider Plugin – Block Slider Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a643ba97e0d5 Credits Rafie...

WordPress All in One Video Downloader Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software All in One Video Downloader Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 83138c5b2fe4 Credits Rafie Muhammad...

WordPress LittleBot ACH for Stripe + Plaid Plugin <= 1.2.8 is vulnerable to Cross Site Scripting (XSS)

Software LittleBot ACH for Stripe + Plaid Type Plugin Vulnerable versions = 1.2.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5af20012a51f Credits Rafie Muhammad...

WordPress Noted PRO Plugin <= 1.02 is vulnerable to Cross Site Scripting (XSS)

Software Noted PRO Type Plugin Vulnerable versions = 1.02 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 52e1f269cd85 Credits Rafie Muhammad Patchstack Required...

WordPress Blockington - Gutenberg Blocks for Full Site Editing Page Builder Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Blockington - Gutenberg Blocks for Full Site Editing Page Builder Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Tabs with Recommended Posts (Widget) Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Tabs with Recommended Posts Widget Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a781c6b9a217 Credits Rafie Muhammad...