WordPress Checkout with Cash App on WooCommerce Plugin <= 5.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Checkout with Cash App on WooCommerce Type Plugin Vulnerable versions = 5.2.1 Fixed in 5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 95fc9f3742ce Credits Rafie Muhamm...

WordPress Admin User Search Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Admin User Search Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID baed34e044d2 Credits Rafie Muhammad Patchstack Requir...

WordPress HQTheme Extra Plugin <= 1.0.19 is vulnerable to Cross Site Scripting (XSS)

Software HQTheme Extra Type Plugin Vulnerable versions = 1.0.19 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bf9979eb70a5 Credits Rafie Muhammad Patchstack Required...

WordPress Internal Comments Plugin <= 1.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Internal Comments Type Plugin Vulnerable versions = 1.2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4ebc42631ae8 Credits Rafie Muhammad Patchstack Requir...

WordPress Sparrow: Product Reviews and Ratings for WooCommerce Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Sparrow: Product Reviews and Ratings for WooCommerce Type Plugin Vulnerable versions = 2.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f8b45251649e Credi...

WordPress Woocommerce Newsletter Image Generator Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Woocommerce Newsletter Image Generator Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 639c79648d62 Credits Rafie...

WordPress QuotePress – Quote Estimate Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software QuotePress – Quote Estimate Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 51fb8888d848 Credits Rafie Muhammad...

WordPress Smart Protect Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Smart Protect Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e36cca3fb743 Credits Rafie Muhammad Patchstack Required...

WordPress Easy Prayer Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)

Software Easy Prayer Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b2c604642d4f Credits Rafie Muhammad Patchstack Required...

WordPress Kanzu Support Desk – WordPress Helpdesk Plugin Plugin <= 2.4.7 is vulnerable to Cross Site Scripting (XSS)

Software Kanzu Support Desk – WordPress Helpdesk Plugin Type Plugin Vulnerable versions = 2.4.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 331294a938f2 Credits Raf...

WordPress EventonAI Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software EventonAI Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 14cbf1a2e9d0 Credits Rafie Muhammad Patchstack Required...

WordPress RT Easy Builder – Advanced addons for Elementor Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software RT Easy Builder – Advanced addons for Elementor Type Plugin Vulnerable versions = 1.8 Fixed in 1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8240f5fa6f97 Credits Rafi...

WordPress Rocket Maintenance Mode & Coming Soon Page Plugin <= 4.3 is vulnerable to Cross Site Scripting (XSS)

Software Rocket Maintenance Mode & Coming Soon Page Type Plugin Vulnerable versions = 4.3 Fixed in 4.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bee342469bdf Credits Rafie...

WordPress Pets Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Pets Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID de9a99f2fff5 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Featured Products First for WooCommerce – A Extension of WooCommerce (WooCommerce Addon Plugin) Plugin <= 1.9.5 is vulnerable to Cross Site Scripting (XSS)

Software Featured Products First for WooCommerce – A Extension of WooCommerce WooCommerce Addon Plugin Type Plugin Vulnerable versions = 1.9.5 Fixed in 1.9.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1...

WordPress WP Disable Sitemap Plugin <= 1.1.6.4 is vulnerable to Cross Site Scripting (XSS)

Software WP Disable Sitemap Type Plugin Vulnerable versions = 1.1.6.4 Fixed in 1.1.6.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ee9a57bb1bb5 Credits Rafie Muhammad Patchstack...

WordPress Food Store – Online Food Delivery & Pickup Plugin <= 1.4.7.4 is vulnerable to Cross Site Scripting (XSS)

Software Food Store – Online Food Delivery & Pickup Type Plugin Vulnerable versions = 1.4.7.4 Fixed in 1.4.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1205491a7a45 Credits...

WordPress Magic Login API Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Magic Login API Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6d2c95bc7776 Credits Rafie Muhammad Patchstack Required...

WordPress wGauge – Free Version Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software wGauge – Free Version Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 34428bd81dad Credits Rafie Muhammad Patchstack...

WordPress Press Elements – Widgets for Elementor Plugin <= 1.7.2 is vulnerable to Cross Site Scripting (XSS)

Software Press Elements – Widgets for Elementor Type Plugin Vulnerable versions = 1.7.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3a46109acff0 Credits Rafie...