WordPress WP Logger Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Logger Type Plugin Vulnerable versions = 2.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID fcdb763b1c53 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Elementor Addon Elements Plugin <= 1.11.16 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.11.16 Fixed in 1.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer WPVibes PSID 41872ea94dbe Credits Rafie Muhammad Patchstack Required...

WordPress UltraAddons Elementor Lite Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software UltraAddons Elementor Lite Type Plugin Vulnerable versions = 1.0.9 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID d3b08d811ef1 Credits Rafie Muhammad Patchstack...

WordPress Gutentor Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Gutentor Type Plugin Vulnerable versions = 1.0.2 Fixed in 1.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b0388e3a27c7 Credits Rafie Muhammad Patchstack Required privileg...

WordPress EthereumICO Plugin <= 2.4.3 is vulnerable to Cross Site Scripting (XSS)

Software EthereumICO Type Plugin Vulnerable versions = 2.4.3 Fixed in 2.4.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 90b8bd0e67cf Credits Rafie Muhammad Patchstack Required...

WordPress Image Photo Gallery Final Tiles Grid Plugin <= 3.5.6 is vulnerable to Cross Site Scripting (XSS)

Software Image Photo Gallery Final Tiles Grid Type Plugin Vulnerable versions = 3.5.6 Fixed in 3.5.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 37480a127ac6 Credits Rafie Muhammad...

WordPress 360 Javascript Viewer Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software 360 Javascript Viewer Type Plugin Vulnerable versions = 1.5.2 Fixed in 1.5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 954a4a07facd Credits Rafie Muhammad Patchstack...

WordPress BuddyForms Attach Post with Group Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Attach Post with Group Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9d4312fdd8bd Credits Rafie Muhammad...

WordPress Notification Plugin <= 6.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Notification Type Plugin Vulnerable versions = 6.0.4 Fixed in 6.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 58552eb21f66 Credits Rafie Muhammad Patchstack Required...

WordPress Seo Optimized Images Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software Seo Optimized Images Type Plugin Vulnerable versions = 2.0 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4f8787b2dacc Credits Rafie Muhammad Patchstack Required...

WordPress Remove WP Update Nags Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software Remove WP Update Nags Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4c53c2dafb06 Credits Rafie Muhammad Patchstack...

WordPress BuddyForms Moderation ( Former: Review Logic ) Plugin <= 1.4.7 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Moderation Former: Review Logic Type Plugin Vulnerable versions = 1.4.7 Fixed in 1.4.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8604cd24c7fb Credits Rafie...

WordPress WordPress Image Compression and Optimizer Plugin – CheetahO Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Image Compression and Optimizer Plugin – CheetahO Type Plugin Vulnerable versions = 1.4.3 Fixed in 1.4.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...

WordPress Divi Contact Form 7 Plugin <= 1.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Divi Contact Form 7 Type Plugin Vulnerable versions = 1.2.4 Fixed in 1.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID afa672c1b3c4 Credits Rafie Muhammad Patchstack Requir...

WordPress Spotlight Social Media Feeds Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS)

Software Spotlight Social Media Feeds Type Plugin Vulnerable versions = 1.6 Fixed in 1.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 91b8b157c36a Credits Rafie Muhammad Patchstack...

WordPress Salon booking system Plugin <= 8.4.7 is vulnerable to Cross Site Scripting (XSS)

Software Salon booking system Type Plugin Vulnerable versions = 8.4.7 Fixed in 8.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 36c49c980842 Credits Rafie Muhammad Patchstack...

WordPress SV Tracking Manager Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Tracking Manager Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9607e9d7b8e8 Credits Rafie Muhammad Patchstack...

WordPress Simple Freemius Shop Plugin <= 1.5.0 is vulnerable to Cross Site Scripting (XSS)

Software Simple Freemius Shop Type Plugin Vulnerable versions = 1.5.0 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID c608c52e1a65 Credits Rafie Muhammad Patchstack...

WordPress Popups Plugin <= 1.7.3 is vulnerable to Cross Site Scripting (XSS)

Software Popups Type Plugin Vulnerable versions = 1.7.3 Fixed in 1.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 23e3c6e9af0f Credits Rafie Muhammad Patchstack Required privilege...

WordPress Gutenberg Block Editor Toolkit Plugin <= 1.16 is vulnerable to Cross Site Scripting (XSS)

Software Gutenberg Block Editor Toolkit Type Plugin Vulnerable versions = 1.16 Fixed in 1.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID d49173f4b0fb Credits Rafie Muhammad Patchsta...