WordPress Advance Menu Manager Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Advance Menu Manager Type Plugin Vulnerable versions = 3.0.5 Fixed in 3.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 720e04a5ed64 Credits Rafie Muhammad Patchstack...

WordPress WooCommerce Bulk Edit Coupons – WP Sheet Editor Plugin < 1.3.41 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Bulk Edit Coupons – WP Sheet Editor Type Plugin Vulnerable versions 1.3.41 Fixed in 1.3.41 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 842ecbe2fc33 Credits...

WordPress Elementor BEMAX Plugin <= 1.5 is vulnerable to Cross Site Scripting (XSS)

Software Elementor BEMAX Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f4c1a4c9489c Credits Rafie Muhammad Patchstack Required...

WordPress All-in-One Video Gallery Plugin < 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Software All-in-One Video Gallery Type Plugin Vulnerable versions 3.4.3 Fixed in 3.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fed726fad706 Credits Rafie Muhammad Patchstack...

WordPress WordPress User Management and User Admin Plugin – User Magic Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software WordPress User Management and User Admin Plugin – User Magic Type Plugin Vulnerable versions = 1.0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5dac84f1c8...

WordPress Premmerce WooCommerce Customers Manager Plugin <= 1.1.13 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce WooCommerce Customers Manager Type Plugin Vulnerable versions = 1.1.13 Fixed in 1.1.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID b3dee6c5c8f0 Credits Rafie Muhamm...

WordPress Awesome SSL Plugin <= 1.7.8 is vulnerable to Cross Site Scripting (XSS)

Software Awesome SSL Type Plugin Vulnerable versions = 1.7.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 99ffd587a4e9 Credits Rafie Muhammad Patchstack Required...

WordPress Error Log Monitor Plugin < 1.7.7 is vulnerable to Cross Site Scripting (XSS)

Software Error Log Monitor Type Plugin Vulnerable versions 1.7.7 Fixed in 1.7.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1ba690e43ba1 Credits Rafie Muhammad Patchstack Requir...

WordPress Search Merchandising – Track & Manage WooCommerce Product Search Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Search Merchandising – Track & Manage WooCommerce Product Search Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Delivery & Pickup Scheduling DateTime Picker Plugin for WooCommerce - Date Time Picker Plugin for WooCommerce Plugin <= 1.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Delivery & Pickup Scheduling DateTime Picker Plugin for WooCommerce - Date Time Picker Plugin for WooCommerce Type Plugin Vulnerable versions = 1.0.11 Fixed in 1.0.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity...

WordPress Content Sidebars Plugin <= 1.6.8 is vulnerable to Cross Site Scripting (XSS)

Software Content Sidebars Type Plugin Vulnerable versions = 1.6.8 Fixed in 1.7.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 88f4d3ff009b Credits Rafie Muhammad Patchstack...

WordPress SVG Flags – Beautiful Scalable Flags For All Countries! Plugin <= 0.9.6 is vulnerable to Cross Site Scripting (XSS)

Software SVG Flags – Beautiful Scalable Flags For All Countries! Type Plugin Vulnerable versions = 0.9.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9d8c58ac2463...

WordPress Product Carousel For WooCommerce – WoorouSell Plugin < 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Product Carousel For WooCommerce – WoorouSell Type Plugin Vulnerable versions 1.1.0 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b5e19f5c4f77 Credits Rafi...

WordPress CPT-onomies: Using Custom Post Types as Taxonomies Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software CPT-onomies: Using Custom Post Types as Taxonomies Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5d4ba9c21410 Credits...

WordPress Variable Product Swatches for WooCommerce Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Variable Product Swatches for WooCommerce Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID af47ebf471b2 Credits Rafie...

WordPress PageManager Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software PageManager Type Plugin Vulnerable versions = 1.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d83214e89fb Credits Rafie Muhammad Patchstack Required...

WordPress Delete old Posts automatically Plugin < 3.3.9 is vulnerable to Cross Site Scripting (XSS)

Software Delete old Posts automatically Type Plugin Vulnerable versions 3.3.9 Fixed in 3.3.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 46270e2e981b Credits Rafie Muhammad...

WordPress WP Relevant Ads Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Relevant Ads Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7cfa2ceef473 Credits Rafie Muhammad Patchstack Required...

WordPress Windsor Strava Club Plugin <= 1.0.14 is vulnerable to Cross Site Scripting (XSS)

Software Windsor Strava Club Type Plugin Vulnerable versions = 1.0.14 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2effed58e825 Credits Rafie Muhammad Patchstack...

WordPress Yummy Recipes Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Yummy Recipes Type Plugin Vulnerable versions = 1.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 991f8ba919f3 Credits Rafie Muhammad Patchstack Required...