WordPress Business Profile Reviews Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Business Profile Reviews Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b0e3678a0ced Credits Rafie Muhammad Patchstack...

WordPress China Payments Plugin Plugin < 3.3.2 is vulnerable to Cross Site Scripting (XSS)

Software China Payments Plugin Type Plugin Vulnerable versions 3.3.2 Fixed in 3.3.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0f480c1a760a Credits Rafie Muhammad Patchstack...

WordPress Multisite Robots.txt Manager Plugin <= 3.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Multisite Robots.txt Manager Type Plugin Vulnerable versions = 3.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6e315ff280c9 Credits Rafie Muhammad...

WordPress Bootitems Core Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Bootitems Core Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0fd9c2a3e107 Credits Rafie Muhammad Patchstack Required...

WordPress WordPress Schema Plugin For Divi, Gutenberg & Shortcodes Plugin < 4.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Schema Plugin For Divi, Gutenberg & Shortcodes Type Plugin Vulnerable versions 4.0.3 Fixed in 4.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ec35450c6ae5...

WordPress WP Post Block Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WP Post Block Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2abff47d3ce8 Credits Rafie Muhammad Patchstack Required...

WordPress wp-buddha-free-adwords Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software wp-buddha-free-adwords Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1ebb92bd0775 Credits Rafie Muhammad Patchstack...

WordPress Bootstrap Blog Theme < 10.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Bootstrap Blog Type Theme Vulnerable versions 10.2.3 Fixed in 10.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 930f23955c14 Credits Rafie Muhammad Patchstack Required...

WordPress Gravity Forms Sticky List Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Gravity Forms Sticky List Type Plugin Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 70cee7cd7d21 Credits Rafie Muhammad Patchstac...

WordPress Google My Business Manager Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Google My Business Manager Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a703fbf6f025 Credits Rafie Muhammad Patchsta...

WordPress Quick Bulk Variations Checkout for WooCommerce Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Quick Bulk Variations Checkout for WooCommerce Type Plugin Vulnerable versions = 1.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fc70a535ba3f Credits Raf...

WordPress Simplifii Theme <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Simplifii Type Theme Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 829dcc344248 Credits Rafie Muhammad Patchstack Required...

WordPress Auto Post WooCommerce Products Plugin <= 2.1.60 is vulnerable to Cross Site Scripting (XSS)

Software Auto Post WooCommerce Products Type Plugin Vulnerable versions = 2.1.60 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 62a38305781e Credits Rafie Muhammad...

WordPress Everse Theme < 1.8.12 is vulnerable to Cross Site Scripting (XSS)

Software Everse Type Theme Vulnerable versions 1.8.12 Fixed in 1.8.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ac81191bc6b1 Credits Rafie Muhammad Patchstack Required privile...

WordPress Passwordless Login with OTP / SMS & Email – Account Kit Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Passwordless Login with OTP / SMS & Email – Account Kit Type Plugin Vulnerable versions = 1.2.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f69eb28819b1...

WordPress SSL Atlas – Free SSL Certificate & HTTPS Redirect for WordPress Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software SSL Atlas – Free SSL Certificate & HTTPS Redirect for WordPress Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Accessibility Checker by Equalize Digital Plugin < 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Accessibility Checker by Equalize Digital Type Plugin Vulnerable versions 1.4.2 Fixed in 1.4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Equalize Digital PSID d2ab23b259fd Credits Rafie...

WordPress WP Link Bio Plugin <= 1.4.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Link Bio Type Plugin Vulnerable versions = 1.4.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 69e36904a9fa Credits Rafie Muhammad Patchstack Required...

WordPress BNG Gateway For WooCommerce Plugin <= 1.5.15 is vulnerable to Cross Site Scripting (XSS)

Software BNG Gateway For WooCommerce Type Plugin Vulnerable versions = 1.5.15 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 38c5d843616b Credits Rafie Muhammad...

WordPress Form Vibes – Database Manager for Forms Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS)

Software Form Vibes – Database Manager for Forms Type Plugin Vulnerable versions = 1.4.8 Fixed in 1.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer WPVibes PSID cd425a15435a Credits Rafie Muhammad...