WordPress WP Front User Submit / Front Editor Plugin <= 4.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Front User Submit / Front Editor Type Plugin Vulnerable versions = 4.0.0 Fixed in 4.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 89f437533c46 Credits Rafie Muhamm...

WordPress Locked Payment Methods for WooCommerce Plugin <= 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software Locked Payment Methods for WooCommerce Type Plugin Vulnerable versions = 1.3.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d253b10ead5d Credits Rafie...

WordPress Alley Business Toolkit Plugin <= 2.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Alley Business Toolkit Type Plugin Vulnerable versions = 2.0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f03c4c803b7a Credits Rafie Muhammad Patchstack...

WordPress WordPress Slider Plugin – Block Slider Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Slider Plugin – Block Slider Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a643ba97e0d5 Credits Rafie...

WordPress SSL Atlas – Free SSL Certificate & HTTPS Redirect for WordPress Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software SSL Atlas – Free SSL Certificate & HTTPS Redirect for WordPress Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Mobile blocks Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Mobile blocks Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2579144786ce Credits Rafie Muhammad Patchstack Required...

WordPress Media Library File Download Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)

Software Media Library File Download Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7eae9dc27a23 Credits Rafie Muhammad Patchstac...

WordPress ExIm Lite Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software ExIm Lite Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4614127c3514 Credits Rafie Muhammad Patchstack Required...

WordPress Advance Search for WooCommerce Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Advance Search for WooCommerce Type Plugin Vulnerable versions = 2.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 74bf04dbf7f5 Credits Rafie Muhammad...

WordPress Divi Carousel Lite - Image Carousel, Logo Carousel, Testimonial Carousel Slider and more Plugin <= 1.6.3 is vulnerable to Cross Site Scripting (XSS)

Software Divi Carousel Lite - Image Carousel, Logo Carousel, Testimonial Carousel Slider and more Type Plugin Vulnerable versions = 1.6.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Cla...

WordPress MotionMagic Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software MotionMagic Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dd0568d24650 Credits Rafie Muhammad Patchstack Required...

WordPress Glorious Services & Support Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Glorious Services & Support Type Plugin Vulnerable versions = 1.0.0 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 530fddb6656a Credits Rafie Muhammad...

WordPress Responsive Social Slider Widget Plugin <= 1.5.3 is vulnerable to Cross Site Scripting (XSS)

Software Responsive Social Slider Widget Type Plugin Vulnerable versions = 1.5.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3fbe3d005963 Credits Rafie Muhammad...

WordPress Scrollbar Customizer Plugin <= 1.5.0 is vulnerable to Cross Site Scripting (XSS)

Software Scrollbar Customizer Type Plugin Vulnerable versions = 1.5.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 71d91cdab1e8 Credits Rafie Muhammad Patchstack...

WordPress Cool Author Box - For Widget and Post Content Plugin <= 2.9.5 is vulnerable to Cross Site Scripting (XSS)

Software Cool Author Box - For Widget and Post Content Type Plugin Vulnerable versions = 2.9.5 Fixed in 2.9.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 965a0456c07b Credits...

WordPress Setka Editor Plugin <= 2.1.20 is vulnerable to Cross Site Scripting (XSS)

Software Setka Editor Type Plugin Vulnerable versions = 2.1.20 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0e08af89e840 Credits Rafie Muhammad Patchstack Required...

WordPress Widgets for SiteOrigin Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS)

Software Widgets for SiteOrigin Type Plugin Vulnerable versions = 1.4.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 717d2bce0621 Credits Rafie Muhammad Patchstack...

WordPress Perelandra Sermons Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Perelandra Sermons Type Plugin Vulnerable versions = 1.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9ff817c8a39c Credits Rafie Muhammad Patchstack...

WordPress Easy Caller with Mocean Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Easy Caller with Mocean Type Plugin Vulnerable versions = 1.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 95b81194adaf Credits Rafie Muhammad Patchstack...

WordPress Mobile Pages Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Mobile Pages Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7dbee75ebab7 Credits Rafie Muhammad Patchstack Required...