3798 matches found
WordPress Freshing Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)
Software Freshing Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 21faf439d0ae Credits Rafie Muhammad Patchstack Required...
WordPress WooCommerce Variation Swatches for Products Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software WooCommerce Variation Swatches for Products Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2750602126f2 Credits Rafie...
WordPress Easy Schema - Structured Data & Rich Snippets Plugin <= 2.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Easy Schema - Structured Data & Rich Snippets Type Plugin Vulnerable versions = 2.2.2 Fixed in 2.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d25737c70298 Credits...
WordPress GFireM Fields Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)
Software GFireM Fields Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7b9137f7b7a5 Credits Rafie Muhammad Patchstack Required...
WordPress Podcast Box – Best Podcasting Plugin for WordPress Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)
Software Podcast Box – Best Podcasting Plugin for WordPress Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d354f1d1cff6 Credits...
WordPress Premmerce SEO for WooCommerce Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS)
Software Premmerce SEO for WooCommerce Type Plugin Vulnerable versions = 2.1.5 Fixed in 2.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID 9b0ae0f180d3 Credits Rafie Muhammad Patchstac...
WordPress 3D viewer – Embed 3D Models Plugin < 1.3.4 is vulnerable to Cross Site Scripting (XSS)
Software 3D viewer – Embed 3D Models Type Plugin Vulnerable versions 1.3.4 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42920a97a20a Credits Rafie Muhammad...
WordPress Turnstile Cloudflare CAPTCHA - A friendly, free CAPTCHA replacement Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software Turnstile Cloudflare CAPTCHA - A friendly, free CAPTCHA replacement Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...
WordPress WP Phone Message Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)
Software WP Phone Message Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3e96bec156d3 Credits Rafie Muhammad Patchstack Require...
WordPress Italian VAT Kit for WooCommerce Plugin <= 1.3.34 is vulnerable to Cross Site Scripting (XSS)
Software Italian VAT Kit for WooCommerce Type Plugin Vulnerable versions = 1.3.34 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 97bced365725 Credits Rafie Muhammad...
WordPress Cleanup Action Scheduler Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)
Software Cleanup Action Scheduler Type Plugin Vulnerable versions = 1.1.0 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 658cd4ed1a2b Credits Rafie Muhammad Patchsta...
WordPress Dynamic Pricing for WooCommerce Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Dynamic Pricing for WooCommerce Type Plugin Vulnerable versions = 1.1.2 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ce0b562a9dd7 Credits Rafie Muhammad...
WordPress FloPress Plugin <= 1.4.2 is vulnerable to Cross Site Scripting (XSS)
Software FloPress Type Plugin Vulnerable versions = 1.4.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 98bc1cb18f05 Credits Rafie Muhammad Patchstack Required...
WordPress Auto Keyword Backlink Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)
Software Auto Keyword Backlink Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 80db1aaebcb5 Credits Rafie Muhammad Patchstack...
WordPress WP-HR GDPR: GDPR Tools for Human Resources on WordPress Plugin <= 0.9 is vulnerable to Cross Site Scripting (XSS)
Software WP-HR GDPR: GDPR Tools for Human Resources on WordPress Type Plugin Vulnerable versions = 0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID db7becb317eb...
WordPress PixiGo Theme <= 1.0.16 is vulnerable to Cross Site Scripting (XSS)
Software PixiGo Type Theme Vulnerable versions = 1.0.16 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d1dff6c0bf87 Credits Rafie Muhammad Patchstack Required privileg...
WordPress Roven Blog Theme <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)
Software Roven Blog Type Theme Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f92c1f62e673 Credits Rafie Muhammad Patchstack Required...
WordPress Menu Image, Icons made easy Plugin < 3.10 is vulnerable to Cross Site Scripting (XSS)
Software Menu Image, Icons made easy Type Plugin Vulnerable versions 3.10 Fixed in 3.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 25e0bdea54af Credits Rafie Muhammad Patchstac...
WordPress Unite Gallery Lite Plugin < 1.7.61 is vulnerable to Cross Site Scripting (XSS)
Software Unite Gallery Lite Type Plugin Vulnerable versions 1.7.61 Fixed in 1.7.61 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7a8cd76e55c3 Credits Rafie Muhammad Patchstack...
WordPress Techism Theme <= 3.0.2 is vulnerable to Cross Site Scripting (XSS)
Software Techism Type Theme Vulnerable versions = 3.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9b2585ea0b5b Credits Rafie Muhammad Patchstack Required privileg...