WordPress SMS OTP Easy Login with Mocean Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software SMS OTP Easy Login with Mocean Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f36dc3803d0f Credits Rafie Muhammad...

WordPress Wallet Up Plugin <= 3.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Wallet Up Type Plugin Vulnerable versions = 3.2.7 Fixed in 3.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a4dec02c5f4a Credits Rafie Muhammad Patchstack Required...

WordPress Streak CRM For Gmail For Contact Form 7 – WordPress Plugin Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Streak CRM For Gmail For Contact Form 7 – WordPress Plugin Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 00592a65a43d...

WordPress WP Security Safe Plugin <= 2.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Security Safe Type Plugin Vulnerable versions = 2.5.1 Fixed in 2.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 65de9592a0f7 Credits Rafie Muhammad Patchstack...

WordPress AffiEasy Plugin < 1.1.4 is vulnerable to Cross Site Scripting (XSS)

Software AffiEasy Type Plugin Vulnerable versions 1.1.4 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer AffiEasy PSID 3e6342eaad96 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Get feedback from visitors – WP Feedback Suite Plugin Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Get feedback from visitors – WP Feedback Suite Plugin Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0ab5ef84106d...

WordPress Pickup & Delivery from Customer Locations for WooCommerce Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Pickup & Delivery from Customer Locations for WooCommerce Type Plugin Vulnerable versions = 1.0.4 Fixed in 1.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f03475fd0fa...

WordPress Easy Settings for LearnDash Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Easy Settings for LearnDash Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a0b1740b059c Credits Rafie Muhammad...

WordPress DIVI Enhancer – DIVI Modules and Options Plugin <= 5.0.9 is vulnerable to Cross Site Scripting (XSS)

Software DIVI Enhancer – DIVI Modules and Options Type Plugin Vulnerable versions = 5.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c7324d4558dc Credits Rafie...

WordPress FTC Disclosure Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software FTC Disclosure Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c482a6fc80d1 Credits Rafie Muhammad Patchstack Required...

WordPress Forms to Klaviyo Plugin <= 5.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Forms to Klaviyo Type Plugin Vulnerable versions = 5.2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 48b75fce56c6 Credits Rafie Muhammad Patchstack Require...

WordPress Admin Speedo Plugin <= 2.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Admin Speedo Type Plugin Vulnerable versions = 2.4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 95d783684103 Credits Rafie Muhammad Patchstack Required...

WordPress WordPress Animation Plugin – Animated Everything Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Animation Plugin – Animated Everything Type Plugin Vulnerable versions = 1.3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b8c549fc7717 Credits...

WordPress StickyWooCart – Ajax Add to Cart for WooCommerce Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software StickyWooCart – Ajax Add to Cart for WooCommerce Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c1a03a2b802b Credits...

WordPress WordLive Livecall Addon for Woocommerce Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WordLive Livecall Addon for Woocommerce Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 59aa5946d146 Credits Rafie...

WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages Plugin < 2.5.2 is vulnerable to Cross Site Scripting (XSS)

Software StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages Type Plugin Vulnerable versions 2.5.2 Fixed in 2.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Easy Digital Downloads – Courses Plugin <= 0.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Easy Digital Downloads – Courses Type Plugin Vulnerable versions = 0.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 03375981d3ea Credits Rafie Muhammad...

WordPress Ad Blocker Notify Lite Plugin <= 2.4.0 is vulnerable to Cross Site Scripting (XSS)

Software Ad Blocker Notify Lite Type Plugin Vulnerable versions = 2.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ed8dd91a7730 Credits Rafie Muhammad Patchstack...

WordPress Any Popup – Popup Forms, Optins & Ads Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Any Popup – Popup Forms, Optins & Ads Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e44a4be7d74c Credits Rafie Muhammad...

WordPress WordPress FAQ Plugin – WPWorx Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress FAQ Plugin – WPWorx Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2cc69f9d613b Credits Rafie Muhammad...