WordPress Bulk Edit Categories and Tags – Create Thousands Quickly on the Editor Plugin < 1.7.6 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Edit Categories and Tags – Create Thousands Quickly on the Editor Type Plugin Vulnerable versions 1.7.6 Fixed in 1.7.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Ads.txt & App-ads.txt Manager for WordPress Plugin < 1.1.7.1 is vulnerable to Cross Site Scripting (XSS)

Software Ads.txt & App-ads.txt Manager for WordPress Type Plugin Vulnerable versions 1.1.7.1 Fixed in 1.1.7.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5d2851ffbfc5 Credits...

WordPress Glossary Plugin < 2.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Glossary Type Plugin Vulnerable versions 2.2.4 Fixed in 2.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ec7d0be9f6b5 Credits Rafie Muhammad Patchstack Required...

WordPress Magic Post Thumbnail Plugin < 4.1.13 is vulnerable to Cross Site Scripting (XSS)

Software Magic Post Thumbnail Type Plugin Vulnerable versions 4.1.13 Fixed in 4.1.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b012adb9b8a4 Credits Rafie Muhammad Patchstack...

WordPress Post Slider and Carousel with Widget – A Responsive Post Slider Plugin < 3.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Post Slider and Carousel with Widget – A Responsive Post Slider Type Plugin Vulnerable versions 3.2.1 Fixed in 3.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress WordPress Schema Plugin For Divi, Gutenberg & Shortcodes Plugin < 4.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Schema Plugin For Divi, Gutenberg & Shortcodes Type Plugin Vulnerable versions 4.0.3 Fixed in 4.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ec35450c6ae5...

WordPress GA4WP: Google Analytics for WordPress Plugin < 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Software GA4WP: Google Analytics for WordPress Type Plugin Vulnerable versions 2.2.0 Fixed in 2.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID afc97efd69b5 Credits Rafie Muhamm...

WordPress WooCommerce Google Sheet Connector Plugin < 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Google Sheet Connector Type Plugin Vulnerable versions 1.3.5 Fixed in 1.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b09a38dc4e5c Credits Rafie Muhammad...

WordPress GravityStripe Subscription Manager Plugin <= 4.1.4 is vulnerable to Cross Site Scripting (XSS)

Software GravityStripe Subscription Manager Type Plugin Vulnerable versions = 4.1.4 Fixed in 4.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 757ed2a2a571 Credits Rafie Muhamma...

WordPress TK Event Weather Plugin <= 1.6.6 is vulnerable to Cross Site Scripting (XSS)

Software TK Event Weather Type Plugin Vulnerable versions = 1.6.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e823c2c9f8bf Credits Rafie Muhammad Patchstack Require...

WordPress WP Dev Powers – Display Screen Dimensions to Admin Plugin Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Dev Powers – Display Screen Dimensions to Admin Plugin Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f38bbbbde0ec...

WordPress Woo Products Widgets For Elementor Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Woo Products Widgets For Elementor Type Plugin Vulnerable versions = 1.0.9 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f6d3aaaf2714 Credits Rafie Muhamma...

WordPress Human Resource Management (HRM) for WordPress – FooPeople Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Human Resource Management HRM for WordPress – FooPeople Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6943e73986ad...

WordPress Premmerce Product Search for WooCommerce Plugin <= 2.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce Product Search for WooCommerce Type Plugin Vulnerable versions = 2.2.3 Fixed in 2.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID df89cf768ffd Credits Rafie Muhamma...

WordPress Elements for LifterLMS Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Elements for LifterLMS Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 14147c9755eb Credits Rafie Muhammad Patchstack...

WordPress Elementor Forms Google Sheet Connector Plugin < 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Forms Google Sheet Connector Type Plugin Vulnerable versions 1.0.9 Fixed in 1.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 998b2d169caf Credits Rafie...

WordPress WooCommerce Cross-Seller Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Cross-Seller Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e5e99150d929 Credits Rafie Muhammad Patchstack...

WordPress Surbma | GDPR Proof Cookie Consent & Notice Bar Plugin < 17.8.2 is vulnerable to Cross Site Scripting (XSS)

Software Surbma | GDPR Proof Cookie Consent & Notice Bar Type Plugin Vulnerable versions 17.8.2 Fixed in 17.8.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 17767534824b Credits...

WordPress Open User Map | Everybody can add locations Plugin < 1.3.17 is vulnerable to Cross Site Scripting (XSS)

Software Open User Map | Everybody can add locations Type Plugin Vulnerable versions 1.3.17 Fixed in 1.3.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9c1e6c504f0a Credits Rafi...

WordPress Livemesh Addons for WPBakery Page Builder Plugin < 3.3 is vulnerable to Cross Site Scripting (XSS)

Software Livemesh Addons for WPBakery Page Builder Type Plugin Vulnerable versions 3.3 Fixed in 3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 58640bfcdb02 Credits Rafie Muhamm...