WordPress Books Gallery Plugin < 4.5.4 is vulnerable to Cross Site Scripting (XSS)

Software Books Gallery Type Plugin Vulnerable versions 4.5.4 Fixed in 4.5.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 55f3f36010fc Credits Rafie Muhammad Patchstack Required...

WordPress Embedder for Google Reviews Plugin < 1.5.12 is vulnerable to Cross Site Scripting (XSS)

Software Embedder for Google Reviews Type Plugin Vulnerable versions 1.5.12 Fixed in 1.5.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 37b56b9878e8 Credits Rafie Muhammad...

WordPress Posts List Designer by Category – List Category Posts Or Recent Posts Plugin < 3.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Posts List Designer by Category – List Category Posts Or Recent Posts Type Plugin Vulnerable versions 3.3.1 Fixed in 3.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress WooCommerce – Country Based Payments Plugin < 1.4.4.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce – Country Based Payments Type Plugin Vulnerable versions 1.4.4.1 Fixed in 1.4.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9fac42c838fb Credits Rafie...

WordPress Events Calendar Registration Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Events Calendar Registration Type Plugin Vulnerable versions = 1.9.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0f6798e3fd52 Credits Rafie Muhammad...

WordPress LocalSEOMap Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software LocalSEOMap Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3215d319786f Credits Rafie Muhammad Patchstack Required...

WordPress MoceanAPI Abandoned Carts for WooCommerce Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software MoceanAPI Abandoned Carts for WooCommerce Type Plugin Vulnerable versions = 1.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a4413625463e Credits Rafie...

WordPress Broadcast Lite Theme < 2.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Broadcast Lite Type Theme Vulnerable versions 2.0.8 Fixed in 2.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8dc3411567dd Credits Rafie Muhammad Patchstack Required...

WordPress Wp My Admin Bar Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Wp My Admin Bar Type Plugin Vulnerable versions = 3.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 491eed150f92 Credits Rafie Muhammad Patchstack Required...

WordPress Locked Payment Methods for WooCommerce Plugin <= 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software Locked Payment Methods for WooCommerce Type Plugin Vulnerable versions = 1.3.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d253b10ead5d Credits Rafie...

WordPress WP Private Media Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Private Media Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 97f5406e373a Credits Rafie Muhammad Patchstack Require...

WordPress Livemesh Addons for Beaver Builder Plugin < 3.3 is vulnerable to Cross Site Scripting (XSS)

Software Livemesh Addons for Beaver Builder Type Plugin Vulnerable versions 3.3 Fixed in 3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a6176790d4e9 Credits Rafie Muhammad...

WordPress Mobile Booster Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Mobile Booster Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2238d1fec34d Credits Rafie Muhammad Patchstack Required...

WordPress WooCommerce to Zoho CRM Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce to Zoho CRM Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fd362fec5d18 Credits Rafie Muhammad Patchstac...

WordPress PopOverXYZ – Show Light Weight Beautiful Tool Tips On Any Text Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software PopOverXYZ – Show Light Weight Beautiful Tool Tips On Any Text Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Coinbase Commerce for Contact Form 7 Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Coinbase Commerce for Contact Form 7 Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3aedb19051d2 Credits Rafie...

WordPress Easy Post Views Count Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Easy Post Views Count Type Plugin Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a0c7ddb24e98 Credits Rafie Muhammad Patchstack...

WordPress WordPress Announcement & Notification Banner Plugin – Bulletin Plugin < 3.8.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Announcement & Notification Banner Plugin – Bulletin Type Plugin Vulnerable versions 3.8.1 Fixed in 3.8.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress SlideDeck: Responsive WordPress Slider Plugin Plugin <= 5.4.3 is vulnerable to Cross Site Scripting (XSS)

Software SlideDeck: Responsive WordPress Slider Plugin Type Plugin Vulnerable versions = 5.4.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5b9794e264f7 Credits Rafi...

WordPress WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More Plugin < 3.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More Type Plugin Vulnerable versions 3.0.2 Fixed in 3.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership...