WordPress Subaccounts for WooCommerce Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Subaccounts for WooCommerce Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9c9b80f294b4 Credits Rafie Muhammad Patchstac...

WordPress Ultimate Custom ScrollBar Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Custom ScrollBar Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9b4f77bc482f Credits Rafie Muhammad Patchstack...

WordPress Coming Soon Pages for WordPress - Coming Soon Booster Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Coming Soon Pages for WordPress - Coming Soon Booster Type Plugin Vulnerable versions = 1.0.6 Fixed in 1.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 5b2ff11e8b80 Credit...

WordPress Disable Emojis & Disable Embeds for WordPress Performance & SpeedUp Plugin <= 1.4.5 is vulnerable to Cross Site Scripting (XSS)

Software Disable Emojis & Disable Embeds for WordPress Performance & SpeedUp Type Plugin Vulnerable versions = 1.4.5 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...

WordPress Live Sales Notification for Woocommerce - Woomotiv Plugin <= 3.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Live Sales Notification for Woocommerce - Woomotiv Type Plugin Vulnerable versions = 3.3.1 Fixed in 3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 825cd413454a Credits Raf...

WordPress WooCommerce Tiered Price Table Plugin <= 3.5.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Tiered Price Table Type Plugin Vulnerable versions = 3.5.0 Fixed in 3.5.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9b5f585c6785 Credits Rafie Muhammad...

WordPress WordPress Tag Cloud Plugin – Tag Groups Plugin <= 1.44.3.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Tag Cloud Plugin – Tag Groups Type Plugin Vulnerable versions = 1.44.3.1 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 37ceda657852 Credits Rafie...

WordPress Bing Custom Search for WordPress Plugin <= 2.4 is vulnerable to Cross Site Scripting (XSS)

Software Bing Custom Search for WordPress Type Plugin Vulnerable versions = 2.4 Fixed in 2.6.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 487fa482beb5 Credits Rafie Muhammad...

WordPress Order Redirects for WooCommerce Plugin <= 0.8 is vulnerable to Cross Site Scripting (XSS)

Software Order Redirects for WooCommerce Type Plugin Vulnerable versions = 0.8 Fixed in 0.8.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b3548bc8e929 Credits Rafie Muhammad...

WordPress BuddyForms Ultimate Member Plugin <= 1.3.7 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Ultimate Member Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 72707a9ff4f8 Credits Rafie Muhammad Patchstack...

WordPress The Events Calendar Plugin <= 6.0.13.1 is vulnerable to Cross Site Scripting (XSS)

Software The Events Calendar Type Plugin Vulnerable versions = 6.0.13.1 Fixed in 6.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Liquid Web / StellarWP PSID 6f08490a3495 Credits Rafie Muhammad...

WordPress Image Carousel For Divi Plugin <= 1.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Image Carousel For Divi Type Plugin Vulnerable versions = 1.6.0 Fixed in 1.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3f302e5b9b05 Credits Rafie Muhammad Patchstack...

WordPress Expandable Paywall Plugin <= 2.0.16 is vulnerable to Cross Site Scripting (XSS)

Software Expandable Paywall Type Plugin Vulnerable versions = 2.0.16 Fixed in 2.0.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4f52f28e3436 Credits Rafie Muhammad Patchstack...

WordPress Display WP Admin Pages in the Frontend – WP Frontend Admin Plugin <= 1.20.0 is vulnerable to Cross Site Scripting (XSS)

Software Display WP Admin Pages in the Frontend – WP Frontend Admin Type Plugin Vulnerable versions = 1.20.0 Fixed in 1.21.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2da048d80366...

WordPress Extend Filter Products By Price Widget Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Extend Filter Products By Price Widget Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 1a6d03d05dc1 Credits Rafie Muhammad...

WordPress bbResolutions Plugin <= 0.7 is vulnerable to Cross Site Scripting (XSS)

Software bbResolutions Type Plugin Vulnerable versions = 0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 33976c10ced6 Credits Rafie Muhammad Patchstack Required privile...

WordPress Divi Testimonial Plus Plugin <= 6.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Divi Testimonial Plus Type Plugin Vulnerable versions = 6.1.0 Fixed in 6.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 1e69e2a451e7 Credits Rafie Muhammad Patchstack...

WordPress SV Media Library Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Media Library Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 7f576ca388bc Credits Rafie Muhammad Patchstack Require...

WordPress SV Proven Expert Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Proven Expert Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 62003655836a Credits Rafie Muhammad Patchstack Require...

WordPress Server Info Plugin <= 2.5.3 is vulnerable to Cross Site Scripting (XSS)

Software Server Info Type Plugin Vulnerable versions = 2.5.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 548d1464357e Credits Rafie Muhammad Patchstack Required privile...