3797 matches found
WordPress Glorious Services & Support Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software Glorious Services & Support Type Plugin Vulnerable versions = 1.0.0 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 530fddb6656a Credits Rafie Muhammad...
WordPress WP Temp Mail (Temporary Mail Service Powered By WordPress) Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software WP Temp Mail Temporary Mail Service Powered By WordPress Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6a5eb4e385ef...
WordPress Connected Sermons Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)
Software Connected Sermons Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c3e345f223ee Credits Rafie Muhammad Patchstack Requir...
WordPress Agncy Theme <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)
Software Agncy Type Theme Vulnerable versions = 1.6.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fa0143071d81 Credits Rafie Muhammad Patchstack Required privilege...
WordPress Ultimate Blocks – Gutenberg Blocks Plugin Plugin <= 3.0.0 is vulnerable to Cross Site Scripting (XSS)
Software Ultimate Blocks – Gutenberg Blocks Plugin Type Plugin Vulnerable versions = 3.0.0 Fixed in 3.0.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3f338cd9f3f6 Credits Rafie...
WordPress Divi Carousel Lite - Image Carousel, Logo Carousel, Testimonial Carousel Slider and more Plugin <= 1.6.3 is vulnerable to Cross Site Scripting (XSS)
Software Divi Carousel Lite - Image Carousel, Logo Carousel, Testimonial Carousel Slider and more Type Plugin Vulnerable versions = 1.6.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Cla...
WordPress Elegant Calendar Lite – WordPress Events Calendar Plugin Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)
Software Elegant Calendar Lite – WordPress Events Calendar Plugin Type Plugin Vulnerable versions = 1.6.7 Fixed in 1.6.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 615ca7b21043...
WordPress Spice Post Slider Plugin <= 1.9 is vulnerable to Cross Site Scripting (XSS)
Software Spice Post Slider Type Plugin Vulnerable versions = 1.9 Fixed in 2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6d34a32da46f Credits Rafie Muhammad Patchstack Required...
WordPress Universal email preference center Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)
Software Universal email preference center Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bbcdce37fcfa Credits Rafie Muhammad...
WordPress Builder for WooCommerce reviews shortcodes – ReviewShort Plugin < 1.0.21 is vulnerable to Cross Site Scripting (XSS)
Software Builder for WooCommerce reviews shortcodes – ReviewShort Type Plugin Vulnerable versions 1.0.21 Fixed in 1.0.21 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Tobias PSID 38a6f8afe733 Credits...
WordPress Conditional Payment Methods for WooCommerce Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Conditional Payment Methods for WooCommerce Type Plugin Vulnerable versions = 1.1.2 Fixed in 1.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 88cda384e297 Credits Rafi...
WordPress TreePress – Easy Family Trees & Ancestor Profiles Plugin <= 3.0.0.1 is vulnerable to Cross Site Scripting (XSS)
Software TreePress – Easy Family Trees & Ancestor Profiles Type Plugin Vulnerable versions = 3.0.0.1 Fixed in 3.0.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a43ea79f6f29...
WordPress Surbma | GDPR Proof Cookie Consent & Notice Bar Plugin < 17.8.2 is vulnerable to Cross Site Scripting (XSS)
Software Surbma | GDPR Proof Cookie Consent & Notice Bar Type Plugin Vulnerable versions 17.8.2 Fixed in 17.8.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 17767534824b Credits...
WordPress Livemesh Addons for WPBakery Page Builder Plugin < 3.3 is vulnerable to Cross Site Scripting (XSS)
Software Livemesh Addons for WPBakery Page Builder Type Plugin Vulnerable versions 3.3 Fixed in 3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 58640bfcdb02 Credits Rafie Muhamm...
WordPress WordApp Mobile App Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)
Software WordApp Mobile App Type Plugin Vulnerable versions = 2.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3aec8014f5d8 Credits Rafie Muhammad Patchstack...
WordPress Rocket Addons – Conditional logic and form addons for Elementor Pro Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software Rocket Addons – Conditional logic and form addons for Elementor Pro Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...
WordPress Mojito Shipping Plugin < 1.4.3 is vulnerable to Cross Site Scripting (XSS)
Software Mojito Shipping Type Plugin Vulnerable versions 1.4.3 Fixed in 1.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 836e46da79bb Credits Rafie Muhammad Patchstack Required...
WordPress Reader Mode - Distraction-Free Content Reader Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software Reader Mode - Distraction-Free Content Reader Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5a7281cdb812 Credits Rafi...
WordPress WC Place Order Without Payment Plugin < 2.5.2 is vulnerable to Cross Site Scripting (XSS)
Software WC Place Order Without Payment Type Plugin Vulnerable versions 2.5.2 Fixed in 2.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 20778007dca1 Credits Rafie Muhammad...
WordPress Contact Form DB Divi Plugin < 1.2 is vulnerable to Cross Site Scripting (XSS)
Software Contact Form DB Divi Type Plugin Vulnerable versions 1.2 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7b57e95fddc1 Credits Rafie Muhammad Patchstack Require...