WordPress Livemesh SiteOrigin Widgets Plugin < 3.3 is vulnerable to Cross Site Scripting (XSS)

Software Livemesh SiteOrigin Widgets Type Plugin Vulnerable versions 3.3 Fixed in 3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a6f49c9df0d3 Credits Rafie Muhammad Patchstack...

WordPress Sticky add to cart for Woo Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Sticky add to cart for Woo Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 982520550df9 Credits Rafie Muhammad Patchsta...

WordPress WP-Cron Status Checker Plugin < 1.2.5 is vulnerable to Cross Site Scripting (XSS)

Software WP-Cron Status Checker Type Plugin Vulnerable versions 1.2.5 Fixed in 1.2.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e78f192bc072 Credits Rafie Muhammad Patchstack...

WordPress WordPress Reviews by ReviewPress Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Reviews by ReviewPress Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9d16e4f8e0e1 Credits Rafie Muhammad...

WordPress Italian VAT Kit for WooCommerce Plugin <= 1.3.34 is vulnerable to Cross Site Scripting (XSS)

Software Italian VAT Kit for WooCommerce Type Plugin Vulnerable versions = 1.3.34 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 97bced365725 Credits Rafie Muhammad...

WordPress WP-HR GDPR: GDPR Tools for Human Resources on WordPress Plugin <= 0.9 is vulnerable to Cross Site Scripting (XSS)

Software WP-HR GDPR: GDPR Tools for Human Resources on WordPress Type Plugin Vulnerable versions = 0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID db7becb317eb...

WordPress ClinicalWP Core Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software ClinicalWP Core Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 39cede9b6e05 Credits Rafie Muhammad Patchstack Required...

WordPress FlashSpeed Plugin < 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software FlashSpeed Type Plugin Vulnerable versions 2.0.2 Fixed in 2.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c83c24ceae6b Credits Rafie Muhammad Patchstack Required...

WordPress Auto Robot Plugin < 3.6.43 is vulnerable to Cross Site Scripting (XSS)

Software Auto Robot Type Plugin Vulnerable versions 3.6.43 Fixed in 3.6.43 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d058a9e82e60 Credits Rafie Muhammad Patchstack Required...

WordPress JDs Portfolio Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS)

Software JDs Portfolio Type Plugin Vulnerable versions = 2.1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bee9b89c6a44 Credits Rafie Muhammad Patchstack Required...

WordPress Order and Inventory Manager for WooCommerce Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software Order and Inventory Manager for WooCommerce Type Plugin Vulnerable versions = 1.4.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 31c75c3595f0 Credits Rafie...

WordPress Turnstile Cloudflare CAPTCHA - A friendly, free CAPTCHA replacement Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Turnstile Cloudflare CAPTCHA - A friendly, free CAPTCHA replacement Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress DeMomentSomTres Grid Archive Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS)

Software DeMomentSomTres Grid Archive Type Plugin Vulnerable versions = 2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID be92652d0948 Credits Rafie Muhammad Patchsta...

WordPress WPTools Masonry Gallery & Posts For Divi Plugin < 3.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WPTools Masonry Gallery & Posts For Divi Type Plugin Vulnerable versions 3.5.1 Fixed in 3.5.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5da96d67723d Credits Rafie...

WordPress Custom Product Builder For WooCommerce Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Custom Product Builder For WooCommerce Type Plugin Vulnerable versions = 1.0.4 Fixed in 1.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 392eaebb1ea4 Credits Rafie...

WordPress Wadi Addons for Elementor Plugin <= 1.0.10 is vulnerable to Cross Site Scripting (XSS)

Software Wadi Addons for Elementor Type Plugin Vulnerable versions = 1.0.10 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d2250f332a15 Credits Rafie Muhammad Patchsta...

WordPress Easy Schema - Structured Data & Rich Snippets Plugin <= 2.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Easy Schema - Structured Data & Rich Snippets Type Plugin Vulnerable versions = 2.2.2 Fixed in 2.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d25737c70298 Credits...

WordPress HM Logo Showcase – Slider & Grid Plugin < 2.0.4 is vulnerable to Cross Site Scripting (XSS)

Software HM Logo Showcase – Slider & Grid Type Plugin Vulnerable versions 2.0.4 Fixed in 2.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d6a5f366444f Credits Rafie Muhammad...

WordPress Booking Addon for WooCommerce Plugin <= 4.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Booking Addon for WooCommerce Type Plugin Vulnerable versions = 4.3.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1704b913b21c Credits Rafie Muhammad...

WordPress Product Options and Price Calculation Formulas for WooCommerce – Uni CPO Plugin <= 4.9.26 is vulnerable to Cross Site Scripting (XSS)

Software Product Options and Price Calculation Formulas for WooCommerce – Uni CPO Type Plugin Vulnerable versions = 4.9.26 Fixed in 4.9.27 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership...