WordPress BotMate - Automate or Sync Your Sites With No Code Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software BotMate - Automate or Sync Your Sites With No Code Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8348fa6fe814 Credits...

WordPress GFireM Action After Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software GFireM Action After Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 980302f4a4bb Credits Rafie Muhammad Patchstack...

WordPress Sprout Clients Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS)

Software Sprout Clients Type Plugin Vulnerable versions = 3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 68806fbebbf5 Credits Rafie Muhammad Patchstack Required...

WordPress Checkout with Cash App on WooCommerce Plugin <= 5.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Checkout with Cash App on WooCommerce Type Plugin Vulnerable versions = 5.2.1 Fixed in 5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 95fc9f3742ce Credits Rafie Muhamm...

WordPress ACF for WooCommerce Product Plugin <= 1.8.1 is vulnerable to Cross Site Scripting (XSS)

Software ACF for WooCommerce Product Type Plugin Vulnerable versions = 1.8.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 77163d30db66 Credits Rafie Muhammad...

WordPress Bulk WooCommerce Category Creator Plugin <= 2.3 is vulnerable to Cross Site Scripting (XSS)

Software Bulk WooCommerce Category Creator Type Plugin Vulnerable versions = 2.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 857dc229de57 Credits Rafie Muhammad...

WordPress OliveWP Companion Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software OliveWP Companion Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7e6ce7e1f348 Credits Rafie Muhammad Patchstack Requir...

WordPress WooCommerce Cross-Seller Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Cross-Seller Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e5e99150d929 Credits Rafie Muhammad Patchstack...

WordPress Link in Bio Creator – Social Plugin < 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Link in Bio Creator – Social Type Plugin Vulnerable versions 1.3.2 Fixed in 1.3.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2c969cadce88 Credits Rafie Muhammad...

WordPress Unakit Theme <= 1.2.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Unakit Type Theme Vulnerable versions = 1.2.4.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b16b88fbd2b0 Credits Rafie Muhammad Patchstack Required privile...

WordPress WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More Plugin < 3.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More Type Plugin Vulnerable versions 3.0.2 Fixed in 3.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership...

WordPress Custom Product Builder For WooCommerce Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Custom Product Builder For WooCommerce Type Plugin Vulnerable versions = 1.0.4 Fixed in 1.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 392eaebb1ea4 Credits Rafie...

WordPress Funnelforms Free Plugin < 3.3.8.5 is vulnerable to Cross Site Scripting (XSS)

Software Funnelforms Free Type Plugin Vulnerable versions 3.3.8.5 Fixed in 3.3.8.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8ac7f31605d7 Credits Rafie Muhammad Patchstack...

WordPress Staggs Product Configurator for WooCommerce Plugin < 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Staggs Product Configurator for WooCommerce Type Plugin Vulnerable versions 1.4.2 Fixed in 1.4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 63876648fcb8 Credits Rafie...

WordPress Guest Author Affiliate Plugin < 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Guest Author Affiliate Type Plugin Vulnerable versions 1.1.6 Fixed in 1.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5c442c4c1bd8 Credits Rafie Muhammad Patchstack...

WordPress Feedpress Generator Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Feedpress Generator Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8b2db3433ca2 Credits Rafie Muhammad Patchstack...

WordPress WooCommerce Google Sheet Connector Plugin < 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Google Sheet Connector Type Plugin Vulnerable versions 1.3.5 Fixed in 1.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b09a38dc4e5c Credits Rafie Muhammad...

WordPress WooCommerce – Country Based Payments Plugin < 1.4.4.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce – Country Based Payments Type Plugin Vulnerable versions 1.4.4.1 Fixed in 1.4.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9fac42c838fb Credits Rafie...

WordPress HM Multiple Roles Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software HM Multiple Roles Type Plugin Vulnerable versions = 1.8 Fixed in 1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7297b541283e Credits Rafie Muhammad Patchstack Required...

WordPress Music Player for Elementor – Audio Player & Podcast Player Plugin < 1.5.9.9 is vulnerable to Cross Site Scripting (XSS)

Software Music Player for Elementor – Audio Player & Podcast Player Type Plugin Vulnerable versions 1.5.9.9 Fixed in 1.5.9.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...