WordPress Smart Admin Menu Filter Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Smart Admin Menu Filter Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6bdc701a1bda Credits Rafie Muhammad Patchstack...

WordPress Opensea Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Opensea Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d4de12a3cf9 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Disable Bloat for WordPress & WooCommerce Plugin < 3.2.9 is vulnerable to Cross Site Scripting (XSS)

Software Disable Bloat for WordPress & WooCommerce Type Plugin Vulnerable versions 3.2.9 Fixed in 3.2.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 57b213ea39f7 Credits Rafie...

WordPress Ultimate Divi Modules Suite – Divi Sumo Lite Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Divi Modules Suite – Divi Sumo Lite Type Plugin Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5acd9c422d26 Credits Rafie...

WordPress South Pole: Climate action now Plugin <= 1.0.3.2 is vulnerable to Cross Site Scripting (XSS)

Software South Pole: Climate action now Type Plugin Vulnerable versions = 1.0.3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0b8c06df3bd4 Credits Rafie Muhammad...

WordPress GutenBook Theme <= 1.0.14 is vulnerable to Cross Site Scripting (XSS)

Software GutenBook Type Theme Vulnerable versions = 1.0.14 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 196df2c9a7a0 Credits Rafie Muhammad Patchstack Required...

WordPress WP Front User Submit / Front Editor Plugin <= 4.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Front User Submit / Front Editor Type Plugin Vulnerable versions = 4.0.0 Fixed in 4.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 89f437533c46 Credits Rafie Muhamm...

WordPress Raise Prices with Sales for WooCommerce Plugin <= 1.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Raise Prices with Sales for WooCommerce Type Plugin Vulnerable versions = 1.3.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d1b6d642c4a5 Credits Rafie...

WordPress Brand Theme <= 1.9 is vulnerable to Cross Site Scripting (XSS)

Software Brand Type Theme Vulnerable versions = 1.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2a26fc6bf87f Credits Rafie Muhammad Patchstack Required privilege...

WordPress GFireM Action After Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software GFireM Action After Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 980302f4a4bb Credits Rafie Muhammad Patchstack...

WordPress BuddyDrive Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software BuddyDrive Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 756f9bf13ef8 Credits Rafie Muhammad Patchstack Required...

WordPress Widgets for SiteOrigin Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS)

Software Widgets for SiteOrigin Type Plugin Vulnerable versions = 1.4.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 717d2bce0621 Credits Rafie Muhammad Patchstack...

WordPress Ajax Live Search Plugin For WordPress Plugin <= 2.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Ajax Live Search Plugin For WordPress Type Plugin Vulnerable versions = 2.3.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9b4d19a516fc Credits Rafie Muhamm...

WordPress Premmerce WooCommerce Toolkit Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce WooCommerce Toolkit Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4559e551f8bb Credits Rafie Muhammad...

WordPress Pretty Grid – Social Feed Gallery Plugin Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Pretty Grid – Social Feed Gallery Plugin Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 26d1c071d144 Credits Rafie...

WordPress Magic Content for Siteorigins Pagebuilder Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Magic Content for Siteorigins Pagebuilder Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1d6f9ff0175d Credits Rafie...

WordPress WritersBlok AI Content Generator for WordPress Plugin <= 1.3.19 is vulnerable to Cross Site Scripting (XSS)

Software WritersBlok AI Content Generator for WordPress Type Plugin Vulnerable versions = 1.3.19 Fixed in 1.3.20 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 20e67a63a397 Credits...

WordPress WooCommerce PayLate Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce PayLate Type Plugin Vulnerable versions = 1.5.1 Fixed in 1.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7223feb8df37 Credits Rafie Muhammad Patchstack...

WordPress GDPR & DSGVO Compliant Maps | GeoUNIT Maps Plugin < 0.0.8 is vulnerable to Cross Site Scripting (XSS)

Software GDPR & DSGVO Compliant Maps | GeoUNIT Maps Type Plugin Vulnerable versions 0.0.8 Fixed in 0.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b3cd501331ba Credits Rafie...

WordPress WP Smart Export (Free) Plugin <= 1.4.2.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Smart Export Free Type Plugin Vulnerable versions = 1.4.2.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 721b909648c5 Credits Rafie Muhammad Patchstack...