WordPress NewsHit Theme <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software NewsHit Type Theme Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a04dcff42173 Credits Rafie Muhammad Patchstack Required privileg...

WordPress Protect Admin Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Protect Admin Type Plugin Vulnerable versions = 2.0.1 Fixed in 2.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 90a7aabd2940 Credits Rafie Muhammad Patchstack Required...

WordPress Content Hubs Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Content Hubs Type Plugin Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 988f22d403da Credits Rafie Muhammad Patchstack Required...

WordPress XT Quick View for WooCommerce Plugin <= 1.9.9 is vulnerable to Cross Site Scripting (XSS)

Software XT Quick View for WooCommerce Type Plugin Vulnerable versions = 1.9.9 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d8044caac43d Credits Rafie Muhammad...

WordPress Responsive Accordion Tabs Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Responsive Accordion Tabs Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 09d7b302a437 Credits Rafie Muhammad Patchstac...

WordPress Advanced Accordion Gutenberg Block Plugin <= 4.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Accordion Gutenberg Block Type Plugin Vulnerable versions = 4.6.0 Fixed in 4.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 944f499ae786 Credits Rafie Muhamma...

WordPress jav's – WooCommerce and Trello integration WooTrello Plugin <= 3.2.5 is vulnerable to Cross Site Scripting (XSS)

Software jav's – WooCommerce and Trello integration WooTrello Type Plugin Vulnerable versions = 3.2.5 Fixed in 3.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bc6f83d83fa4...

WordPress Contact Form DB Divi Plugin < 1.2 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form DB Divi Type Plugin Vulnerable versions 1.2 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7b57e95fddc1 Credits Rafie Muhammad Patchstack Require...

WordPress GDPR & DSGVO Compliant Maps | GeoUNIT Maps Plugin < 0.0.8 is vulnerable to Cross Site Scripting (XSS)

Software GDPR & DSGVO Compliant Maps | GeoUNIT Maps Type Plugin Vulnerable versions 0.0.8 Fixed in 0.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b3cd501331ba Credits Rafie...

WordPress Auto Robot Plugin < 3.6.43 is vulnerable to Cross Site Scripting (XSS)

Software Auto Robot Type Plugin Vulnerable versions 3.6.43 Fixed in 3.6.43 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d058a9e82e60 Credits Rafie Muhammad Patchstack Required...

WordPress Inavii for Elementor Social Feed Plugin < 2.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Inavii for Elementor Social Feed Type Plugin Vulnerable versions 2.1.3 Fixed in 2.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9e06abac0d5b Credits Rafie Muhammad...

WordPress Migrate WordPress Website & Backups – Prime Mover Plugin < 1.8.8 is vulnerable to Cross Site Scripting (XSS)

Software Migrate WordPress Website & Backups – Prime Mover Type Plugin Vulnerable versions 1.8.8 Fixed in 1.8.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e9d42f7bfde8 Credits...

WordPress Dreamfox Media Payment gateway per Product for Woocommerce Plugin < 3.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Dreamfox Media Payment gateway per Product for Woocommerce Type Plugin Vulnerable versions 3.2.7 Fixed in 3.2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f228b3d2c1e8...

WordPress Top News – Best News Plugin for WordPress Plugin < 2.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Top News – Best News Plugin for WordPress Type Plugin Vulnerable versions 2.3.7 Fixed in 2.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c525dae0bf4f Credits Rafie...

WordPress Cloud SAML SSO - Single Sign On Login Plugin < 1.0.14 is vulnerable to Cross Site Scripting (XSS)

Software Cloud SAML SSO - Single Sign On Login Type Plugin Vulnerable versions 1.0.14 Fixed in 1.0.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 69c4df44a084 Credits Rafie...

WordPress Content Slider for WP Posts (Section Slider) Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS)

Software Content Slider for WP Posts Section Slider Type Plugin Vulnerable versions = 0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9e0ed6db33b1 Credits Rafie...

WordPress Advanced Custom Fields options import/export Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Custom Fields options import/export Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4db49edd1f34 Credits Rafie...

WordPress WP Google Street View (with 360° virtual tour) & Google maps + Local SEO Plugin < 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Google Street View with 360° virtual tour & Google maps + Local SEO Type Plugin Vulnerable versions 1.1.1 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress StreamWeasels YouTube Integration Plugin < 1.1.4 is vulnerable to Cross Site Scripting (XSS)

Software StreamWeasels YouTube Integration Type Plugin Vulnerable versions 1.1.4 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4670ce2ab82b Credits Rafie Muhammad...

WordPress Table & Contact Form 7 Database – Tablesome Plugin < 1.0.15 is vulnerable to Cross Site Scripting (XSS)

Software Table & Contact Form 7 Database – Tablesome Type Plugin Vulnerable versions 1.0.15 Fixed in 1.0.15 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 61904bf8ec90 Credits Rafi...