WordPress WP EasyPay Plugin <= 4.1 is vulnerable to Cross Site Scripting (XSS)

Software WP EasyPay Type Plugin Vulnerable versions = 4.1 Fixed in 4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 031c608a3e9c Credits Rafie Muhammad Patchstack Required...

WordPress WC REST Payment Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software WC REST Payment Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3803bd96e128 Credits Rafie Muhammad Patchstack Required...

WordPress GloriousThemes Starter Sites Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software GloriousThemes Starter Sites Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fbb0bb613259 Credits Rafie Muhammad...

WordPress Featured Images in RSS for Mailchimp & More Plugin < 1.6.2 is vulnerable to Cross Site Scripting (XSS)

Software Featured Images in RSS for Mailchimp & More Type Plugin Vulnerable versions 1.6.2 Fixed in 1.6.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 51694d6d4bc7 Credits Rafie...

WordPress Knowledge Base documentation & wiki plugin – BasePress Plugin <= 2.15.20 is vulnerable to Cross Site Scripting (XSS)

Software Knowledge Base documentation & wiki plugin – BasePress Type Plugin Vulnerable versions = 2.15.20 Fixed in 2.15.21 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 16b7efd2ba...

WordPress Content Collector Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Content Collector Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 67ec82c3bce7 Credits Rafie Muhammad Patchstack Requir...

WordPress MotionMagic Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software MotionMagic Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dd0568d24650 Credits Rafie Muhammad Patchstack Required...

WordPress Restaurant & Cafe Addon for Elementor Plugin < 1.4.8 is vulnerable to Cross Site Scripting (XSS)

Software Restaurant & Cafe Addon for Elementor Type Plugin Vulnerable versions 1.4.8 Fixed in 1.4.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1b34f3b56b8e Credits Rafie Muhamm...

WordPress BotMate - Automate or Sync Your Sites With No Code Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software BotMate - Automate or Sync Your Sites With No Code Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8348fa6fe814 Credits...

WordPress WP Tools Divi Product Carousel Plugin < 1.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Tools Divi Product Carousel Type Plugin Vulnerable versions 1.5.1 Fixed in 1.5.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42d03d30e091 Credits Rafie Muhammad...

WordPress Premmerce Frequently Bought Together for WooCommerce Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce Frequently Bought Together for WooCommerce Type Plugin Vulnerable versions = 1.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 484e6731b7c9 Credi...

WordPress Page Builder Sandwich – Front-End Page Builder Plugin <= 5.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Page Builder Sandwich – Front-End Page Builder Type Plugin Vulnerable versions = 5.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 69959237fa11 Credits Raf...

WordPress Automizy Gravity Forms Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Automizy Gravity Forms Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b6399e0d3ef8 Credits Rafie Muhammad Patchstack...

WordPress WP Sierra Theme <= 1.0.49 is vulnerable to Cross Site Scripting (XSS)

Software WP Sierra Type Theme Vulnerable versions = 1.0.49 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 34a487172e97 Credits Rafie Muhammad Patchstack Required...

WordPress Device Frame Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Device Frame Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 716731f50ce3 Credits Rafie Muhammad Patchstack Required...

WordPress Simple Cart Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Simple Cart Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d50ef7e26bc5 Credits Rafie Muhammad Patchstack Required...

WordPress Redirection for Contact Form 7 Plugin < 2.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Redirection for Contact Form 7 Type Plugin Vulnerable versions 2.9.2 Fixed in 2.9.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9eac132d30fd Credits Rafie Muhammad...

WordPress Advanced USPS Shipping Method Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Advanced USPS Shipping Method Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a753901c3acc Credits Rafie Muhammad...

WordPress Doubly - Cross Domain Copy Paste for WordPress Plugin < 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Doubly - Cross Domain Copy Paste for WordPress Type Plugin Vulnerable versions 1.0 Fixed in 1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dd92367e6b06 Credits Rafie...

WordPress Add Expires Headers & Optimized Minify Plugin < 2.8.0 is vulnerable to Cross Site Scripting (XSS)

Software Add Expires Headers & Optimized Minify Type Plugin Vulnerable versions 2.8.0 Fixed in 2.8.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5a0ef5b73690 Credits Rafie...