WordPress Shipping Manager For WooCommerce Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software Shipping Manager For WooCommerce Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a730edea6e1a Credits Rafie Muhammad...

WordPress Live Scores for SportsPress Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Live Scores for SportsPress Type Plugin Vulnerable versions = 1.9.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1a8a87c6e703 Credits Rafie Muhammad...

WordPress TK SmugMug Slideshow Shortcode Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)

Software TK SmugMug Slideshow Shortcode Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a44f02d512b6 Credits Rafie Muhammad...

WordPress Bootstrap Coach Theme < 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Bootstrap Coach Type Theme Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 56159c2dd7f6 Credits Rafie Muhammad Patchstack Required...

WordPress Aquarella Lite Theme <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Aquarella Lite Type Theme Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b3af0c04aaa1 Credits Rafie Muhammad Patchstack Required...

WordPress Delivery Drivers Manager Plugin < 1.1.9 is vulnerable to Cross Site Scripting (XSS)

Software Delivery Drivers Manager Type Plugin Vulnerable versions 1.1.9 Fixed in 1.1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3011dbed9d9e Credits Rafie Muhammad Patchstack...

WordPress Post Slider and Carousel with Widget – A Responsive Post Slider Plugin < 3.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Post Slider and Carousel with Widget – A Responsive Post Slider Type Plugin Vulnerable versions 3.2.1 Fixed in 3.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Radio Player Plugin < 2.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Radio Player Type Plugin Vulnerable versions 2.0.5 Fixed in 2.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3e0bf7a12bee Credits Rafie Muhammad Patchstack Required...

WordPress Sales Page Addon – Elementor & Beaver Builder Plugin < 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Sales Page Addon – Elementor & Beaver Builder Type Plugin Vulnerable versions 1.4.1 Fixed in 1.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f3400abfe05c Credits Rafi...

WordPress Bulk Attachment Download Plugin < 1.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Attachment Download Type Plugin Vulnerable versions 1.3.7 Fixed in 1.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 501e6c0a9644 Credits Rafie Muhammad Patchstack...

WordPress Contact Form 7 Multi-Step Forms Plugin < 4.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form 7 Multi-Step Forms Type Plugin Vulnerable versions 4.3.1 Fixed in 4.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4442b3e885b0 Credits Rafie Muhammad...

WordPress Ajax Press - Easily Enable Fast Ajax Navigation Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Ajax Press - Easily Enable Fast Ajax Navigation Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5ec2c53426f5 Credits...

WordPress Themereps Helper Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Themereps Helper Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6799bde950c0 Credits Rafie Muhammad Patchstack Require...

WordPress Pinblocks — Gutenberg blocks with Pinterest widgets Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Pinblocks — Gutenberg blocks with Pinterest widgets Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ba6810972139 Credit...

WordPress GravityStripe Subscription Manager Plugin <= 4.1.4 is vulnerable to Cross Site Scripting (XSS)

Software GravityStripe Subscription Manager Type Plugin Vulnerable versions = 4.1.4 Fixed in 4.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 757ed2a2a571 Credits Rafie Muhamma...

WordPress Easy Smooth Scroll Links Plugin <= 2.23.1 is vulnerable to Cross Site Scripting (XSS)

Software Easy Smooth Scroll Links Type Plugin Vulnerable versions = 2.23.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 09f432ff9f4d Credits Rafie Muhammad Patchstac...

WordPress WooKit – WooCommerce Tools & Customizations Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)

Software WooKit – WooCommerce Tools & Customizations Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 650930cce60d Credits Rafie...

WordPress Payment Gateway Groups for WooCommerce Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Payment Gateway Groups for WooCommerce Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b23d24f13593 Credits Rafie...

WordPress Smart Tools for WooCommerce Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Smart Tools for WooCommerce Type Plugin Vulnerable versions = 1.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0feab35e4560 Credits Rafie Muhammad...

WordPress netFORUM Single Sign On Plugin <= 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software netFORUM Single Sign On Type Plugin Vulnerable versions = 1.3.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9ddecf76497f Credits Rafie Muhammad Patchstack...