WordPress Checkout with Cash App on EDD Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Checkout with Cash App on EDD Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6c72ff45c82b Credits Rafie Muhammad...

WordPress FeedbackScout: The easiest way to collect, prioritise, manage and track customer feedback. Plugin <= 1.9.3 is vulnerable to Cross Site Scripting (XSS)

Software FeedbackScout: The easiest way to collect, prioritise, manage and track customer feedback. Type Plugin Vulnerable versions = 1.9.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer...

WordPress Phraseanet Wordpress Client Plugin <= 1.3.11 is vulnerable to Cross Site Scripting (XSS)

Software Phraseanet Wordpress Client Type Plugin Vulnerable versions = 1.3.11 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d3b74aa199c0 Credits Rafie Muhammad...

WordPress Master Blocks – Gutenberg Site Builder Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Master Blocks – Gutenberg Site Builder Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ff08f9c52cf5 Credits Rafie...

WordPress WP School Calendar Plugin < 3.7.9 is vulnerable to Cross Site Scripting (XSS)

Software WP School Calendar Type Plugin Vulnerable versions 3.7.9 Fixed in 3.7.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2469db793f59 Credits Rafie Muhammad Patchstack...

WordPress Super Social Content Locker Lite Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Super Social Content Locker Lite Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 96c47939fcea Credits Rafie Muhammad...

WordPress WordPress Admin Tables Extra Columns : Easy way to create custom columns on WordPress post, page & user admin tables Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Admin Tables Extra Columns : Easy way to create custom columns on WordPress post, page & user admin tables Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS...

WordPress Wp My Admin Bar Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Wp My Admin Bar Type Plugin Vulnerable versions = 3.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 491eed150f92 Credits Rafie Muhammad Patchstack Required...

WordPress WebinarIgnition Plugin < 3.01.3 is vulnerable to Cross Site Scripting (XSS)

Software WebinarIgnition Type Plugin Vulnerable versions 3.01.3 Fixed in 3.01.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Tobias PSID 30c1e2f35176 Credits Rafie Muhammad Patchstack Required...

WordPress Mass Ping Tool for SEO – Wordpress ping list to get indexed faster on Google, Yandex, … Plugin < 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Mass Ping Tool for SEO – Wordpress ping list to get indexed faster on Google, Yandex, … Type Plugin Vulnerable versions 1.0.3 Fixed in 1.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer...

WordPress Bulk Auto Image Title Attribute (Image Title tag) optimization (Image SEO) + Woocommerce Plugin < 1.2.5 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Auto Image Title Attribute Image Title tag optimization Image SEO + Woocommerce Type Plugin Vulnerable versions 1.2.5 Fixed in 1.2.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim...

WordPress WordPress Animation Plugin – Animated Everything Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Animation Plugin – Animated Everything Type Plugin Vulnerable versions = 1.3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b8c549fc7717 Credits...

WordPress Internal Linking for SEO traffic & Ranking – Auto internal links (100% automatic) Plugin < 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Internal Linking for SEO traffic & Ranking – Auto internal links 100% automatic Type Plugin Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim...

WordPress Aiify Blocks - ChatGPT AI Content Editing and Generation Blocks Plugin <= 0.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Aiify Blocks - ChatGPT AI Content Editing and Generation Blocks Type Plugin Vulnerable versions = 0.0.8 Fixed in 0.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress MoceanAPI Order SMS Notification for WooCommerce Plugin <= 1.4.12 is vulnerable to Cross Site Scripting (XSS)

Software MoceanAPI Order SMS Notification for WooCommerce Type Plugin Vulnerable versions = 1.4.12 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f1276d575ff0 Credits...

WordPress Premmerce WooCommerce Customers Manager Plugin <= 1.1.13 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce WooCommerce Customers Manager Type Plugin Vulnerable versions = 1.1.13 Fixed in 1.1.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID b3dee6c5c8f0 Credits Rafie Muhamm...

WordPress Stackable Plugin < 3.10.0 is vulnerable to Cross Site Scripting (XSS)

Software Stackable Type Plugin Vulnerable versions 3.10.0 Fixed in 3.10.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d793410a8984 Credits Rafie Muhammad Patchstack Required...

WordPress Sprout Clients Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS)

Software Sprout Clients Type Plugin Vulnerable versions = 3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 68806fbebbf5 Credits Rafie Muhammad Patchstack Required...

WordPress CPT-onomies: Using Custom Post Types as Taxonomies Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software CPT-onomies: Using Custom Post Types as Taxonomies Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5d4ba9c21410 Credits...

WordPress WP Mobile Menu Plugin < 2.8.4 is vulnerable to Cross Site Scripting (XSS)

Software WP Mobile Menu Type Plugin Vulnerable versions 2.8.4 Fixed in 2.8.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b62d186dca99 Credits Rafie Muhammad Patchstack Required...