WordPress WP-HR Manager: The Human Resources Plugin for WordPress Plugin <= 3.0.8 is vulnerable to Cross Site Scripting (XSS)

Software WP-HR Manager: The Human Resources Plugin for WordPress Type Plugin Vulnerable versions = 3.0.8 Fixed in 3.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4bb08ee51e2f...

WordPress STAX Header Builder Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS)

Software STAX Header Builder Type Plugin Vulnerable versions = 1.3.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8750093fc2e7 Credits Rafie Muhammad Patchstack...

WordPress WordPress eCommerce Plugin – Studiocart Plugin < 2.5.20 is vulnerable to Cross Site Scripting (XSS)

Software WordPress eCommerce Plugin – Studiocart Type Plugin Vulnerable versions 2.5.20 Fixed in 2.5.20 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5eb1bf45cbd4 Credits Rafie...

WordPress Free Shipping Label and Progress Bar for WooCommerce Plugin < 2.6.12 is vulnerable to Cross Site Scripting (XSS)

Software Free Shipping Label and Progress Bar for WooCommerce Type Plugin Vulnerable versions 2.6.12 Fixed in 2.6.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0ce90fbf8a11...

WordPress Site Chat - Website Chat & trusted support for your WordPress site and WooCommerce store. Plugin < 1.1.11 is vulnerable to Cross Site Scripting (XSS)

Software Site Chat - Website Chat & trusted support for your WordPress site and WooCommerce store. Type Plugin Vulnerable versions 1.1.11 Fixed in 1.1.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer...

WordPress SpamJam Plugin < 0.4.0 is vulnerable to Cross Site Scripting (XSS)

Software SpamJam Type Plugin Vulnerable versions 0.4.0 Fixed in 0.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dbc09ee79d95 Credits Rafie Muhammad Patchstack Required privile...

WordPress Team Members – Best WordPress Team Plugin with Live Team Builder Plugin < 2.8.3 is vulnerable to Cross Site Scripting (XSS)

Software Team Members – Best WordPress Team Plugin with Live Team Builder Type Plugin Vulnerable versions 2.8.3 Fixed in 2.8.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress WordPress FAQ Accordion Plugin - Display FAQ Plugin < 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software WordPress FAQ Accordion Plugin - Display FAQ Type Plugin Vulnerable versions 1.4.3 Fixed in 1.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 153e3f2c0d28 Credits Rafie...

WordPress Missing Widgets for Elementor Plugin < 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software Missing Widgets for Elementor Type Plugin Vulnerable versions 1.3.5 Fixed in 1.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b18cda363509 Credits Rafie Muhammad...

WordPress Stackable Plugin < 3.10.0 is vulnerable to Cross Site Scripting (XSS)

Software Stackable Type Plugin Vulnerable versions 3.10.0 Fixed in 3.10.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d793410a8984 Credits Rafie Muhammad Patchstack Required...

WordPress Master Addons for Elementor Plugin < 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Master Addons for Elementor Type Plugin Vulnerable versions 2.0.3 Fixed in 2.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1cb661f3de8e Credits Rafie Muhammad...

WordPress Station Pro Plugin < 2.3.4 is vulnerable to Cross Site Scripting (XSS)

Software Station Pro Type Plugin Vulnerable versions 2.3.4 Fixed in 2.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d46c92672929 Credits Rafie Muhammad Patchstack Required...

WordPress Master Blocks – Gutenberg Site Builder Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Master Blocks – Gutenberg Site Builder Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ff08f9c52cf5 Credits Rafie...

WordPress WordPress Slideshow Gallery Plugin – Easy Slideshow Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Slideshow Gallery Plugin – Easy Slideshow Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID aecb415d5ce5 Credit...

WordPress SnazzyAdmin WP Admin Theme Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software SnazzyAdmin WP Admin Theme Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e3611a722d35 Credits Rafie Muhammad Patchsta...

WordPress Automatic Post Categories Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Automatic Post Categories Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID de6bb02932f9 Credits Rafie Muhammad Patchstack...

WordPress Contact Form for WordPress- Cybrosys Plugin <= 5.0 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form for WordPress- Cybrosys Type Plugin Vulnerable versions = 5.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a418e2304432 Credits Rafie Muhammad...

WordPress Video Reviews / Video Widget Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Video Reviews / Video Widget Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7dac09181d24 Credits Rafie Muhammad...

WordPress Podcast Box – Best Podcasting Plugin for WordPress Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Podcast Box – Best Podcasting Plugin for WordPress Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d354f1d1cff6 Credits...

WordPress Shipping Manager For WooCommerce Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software Shipping Manager For WooCommerce Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a730edea6e1a Credits Rafie Muhammad...