WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b1f873edfbfb Credits Rafie Muhammad...

WordPress RSS Control Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS)

Software RSS Control Type Plugin Vulnerable versions = 3.0.5 Fixed in 3.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID ab1aa164e48c Credits Rafie Muhammad Patchstack Required...

WordPress SV Forms Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Forms Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.02 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3d5feaf66d74 Credits Rafie Muhammad Patchstack Required...

WordPress Share This Image Plugin <= 1.80 is vulnerable to Cross Site Scripting (XSS)

Software Share This Image Type Plugin Vulnerable versions = 1.80 Fixed in 1.81 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3c9ca225ea17 Credits Rafie Muhammad Patchstack Required...

WordPress Elementor Addon Elements Plugin <= 1.11.16 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.11.16 Fixed in 1.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer WPVibes PSID 41872ea94dbe Credits Rafie Muhammad Patchstack Required...

WordPress BlogPost - BlogPost Widgets - Amazing Blog Layouts Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software BlogPost - BlogPost Widgets - Amazing Blog Layouts Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 694940615fc3 Credits Rafie...

WordPress WP Table Pixie Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Table Pixie Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 70bf034f96eb Credits Rafie Muhammad Patchstack Required...

WordPress Menukaart - Restaurant Menu & Online Ordering with WooCommerce Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Menukaart - Restaurant Menu & Online Ordering with WooCommerce Type Plugin Vulnerable versions = 1.3 Fixed in 1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 0dd6733ef2c4...

WordPress Gutentor Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Gutentor Type Plugin Vulnerable versions = 1.0.2 Fixed in 1.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b0388e3a27c7 Credits Rafie Muhammad Patchstack Required privileg...

WordPress WPGutenBlog Demo Import Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WPGutenBlog Demo Import Type Plugin Vulnerable versions = 1.0.2 Fixed in 1.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID e838d8b2eb5f Credits Rafie Muhammad Patchstack...

WordPress ShortcodeHub - MultiPurpose Shortcode Builder Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software ShortcodeHub - MultiPurpose Shortcode Builder Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 99ef69b507c6 Credits Rafie...

WordPress Import Holded for WooCommerce or Easy Digital Downloads Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Import Holded for WooCommerce or Easy Digital Downloads Type Plugin Vulnerable versions = 1.3 Fixed in 2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b0d5eca11d7a Credits...

WordPress Fast Custom Social Share by CodeBard Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Fast Custom Social Share by CodeBard Type Plugin Vulnerable versions = 1.0.9 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Codebard PSID d404bf7e4f09 Credits Rafie Muhammad...

WordPress WP Required Taxonomies – Categories and Tags Mandatory Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS)

Software WP Required Taxonomies – Categories and Tags Mandatory Type Plugin Vulnerable versions = 1.1.7 Fixed in 1.1.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9fdffcdf06a8 Credi...

WordPress Pay For Post with WooCommerce Plugin <= 3.1.10 is vulnerable to Cross Site Scripting (XSS)

Software Pay For Post with WooCommerce Type Plugin Vulnerable versions = 3.1.10 Fixed in 3.1.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 66dd1df63221 Credits Rafie Muhammad...

WordPress WPEventPartners Demo Import Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WPEventPartners Demo Import Type Plugin Vulnerable versions = 1.0.3 Fixed in 1.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a8b8e9b1e719 Credits Rafie Muhammad Patchstac...

WordPress Spanish Market Enhancements for WooCommerce Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Spanish Market Enhancements for WooCommerce Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2f56f70008a2 Credits Rafie...

WordPress WP Cloud Server Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Cloud Server Type Plugin Vulnerable versions = 1.3.0 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8cdd8c408320 Credits Rafie Muhammad Patchstack Required...

WordPress Search Console Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Search Console Type Plugin Vulnerable versions = 2.1.1 Fixed in 2.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a4be5ffaaaab Credits Rafie Muhammad Patchstack Required...

WordPress TempTool [Show Current Template Info] Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS)

Software TempTool Show Current Template Info Type Plugin Vulnerable versions = 1.1.9 Fixed in 1.1.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID bb611e3948a1 Credits Rafie Muhammad...