WordPress Finpose – Accounting and Financial Tracking Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Finpose – Accounting and Financial Tracking Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b756a68c076a Credits Rafie...

WordPress Finpose – Accounting and Financial Tracking plugin <= 1.0.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Finpose – Accounting and Financial Tracking plugin versions = 1.0.0. Solution No patched version available...