WordPress Aiify Blocks - ChatGPT AI Content Editing and Generation Blocks Plugin <= 0.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Aiify Blocks - ChatGPT AI Content Editing and Generation Blocks Type Plugin Vulnerable versions = 0.0.8 Fixed in 0.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress MoceanAPI Order SMS Notification for WooCommerce Plugin <= 1.4.12 is vulnerable to Cross Site Scripting (XSS)

Software MoceanAPI Order SMS Notification for WooCommerce Type Plugin Vulnerable versions = 1.4.12 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f1276d575ff0 Credits...

WordPress Premmerce WooCommerce Customers Manager Plugin <= 1.1.13 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce WooCommerce Customers Manager Type Plugin Vulnerable versions = 1.1.13 Fixed in 1.1.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID b3dee6c5c8f0 Credits Rafie Muhamm...

WordPress Stackable Plugin < 3.10.0 is vulnerable to Cross Site Scripting (XSS)

Software Stackable Type Plugin Vulnerable versions 3.10.0 Fixed in 3.10.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d793410a8984 Credits Rafie Muhammad Patchstack Required...

WordPress Sprout Clients Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS)

Software Sprout Clients Type Plugin Vulnerable versions = 3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 68806fbebbf5 Credits Rafie Muhammad Patchstack Required...

WordPress CPT-onomies: Using Custom Post Types as Taxonomies Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software CPT-onomies: Using Custom Post Types as Taxonomies Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5d4ba9c21410 Credits...

WordPress WP Mobile Menu Plugin < 2.8.4 is vulnerable to Cross Site Scripting (XSS)

Software WP Mobile Menu Type Plugin Vulnerable versions 2.8.4 Fixed in 2.8.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b62d186dca99 Credits Rafie Muhammad Patchstack Required...

WordPress ActiveCampaign Email Preference Center Plugin < 2.0.12 is vulnerable to Cross Site Scripting (XSS)

Software ActiveCampaign Email Preference Center Type Plugin Vulnerable versions 2.0.12 Fixed in 2.0.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0ae883cf0c33 Credits Rafie...

WordPress WooCommerce upcoming Products Plugin <= 1.5.9.2 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce upcoming Products Type Plugin Vulnerable versions = 1.5.9.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 65707ce7d8a7 Credits Rafie Muhammad...

WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages Plugin < 2.5.2 is vulnerable to Cross Site Scripting (XSS)

Software StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages Type Plugin Vulnerable versions 2.5.2 Fixed in 2.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Ajax Live Search Plugin For WordPress Plugin <= 2.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Ajax Live Search Plugin For WordPress Type Plugin Vulnerable versions = 2.3.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9b4d19a516fc Credits Rafie Muhamm...

WordPress BP WC Vendors Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software BP WC Vendors Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5c34163fa809 Credits Rafie Muhammad Patchstack Required...

WordPress Shortcodes Ultimate Plugin <= 5.13.0 is vulnerable to Cross Site Scripting (XSS)

Software Shortcodes Ultimate Type Plugin Vulnerable versions = 5.13.0 Fixed in 5.13.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 568e2ac38f7b Credits Rafie Muhammad Patchstack...

WordPress Simply Featured Video - Featured video support for WordPress Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Simply Featured Video - Featured video support for WordPress Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d9558f50ad...

WordPress WCC SEO Keyword Research Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WCC SEO Keyword Research Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b9e296dd4139 Credits Rafie Muhammad Patchstack...

WordPress Justified Gallery Plugin < 1.8.1 is vulnerable to Cross Site Scripting (XSS)

Software Justified Gallery Type Plugin Vulnerable versions 1.8.1 Fixed in 1.8.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1b33d1e3fa93 Credits Rafie Muhammad Patchstack Requir...

WordPress Krste Theme <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Krste Type Theme Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 85a28ce3ea57 Credits Rafie Muhammad Patchstack Required privilege...

WordPress WPHobby Demo Import Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software WPHobby Demo Import Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d1dee08a5293 Credits Rafie Muhammad Patchstack...

WordPress Delete old Posts automatically Plugin < 3.3.9 is vulnerable to Cross Site Scripting (XSS)

Software Delete old Posts automatically Type Plugin Vulnerable versions 3.3.9 Fixed in 3.3.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 46270e2e981b Credits Rafie Muhammad...

WordPress Independent Analytics - Google Analytics Alternative for WordPress Plugin < 1.26.0 is vulnerable to Cross Site Scripting (XSS)

Software Independent Analytics - Google Analytics Alternative for WordPress Type Plugin Vulnerable versions 1.26.0 Fixed in 1.26.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...