2 matches found
WordPress WP Group Promoter Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)
Software WP Group Promoter Type Plugin Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 308d9974dbb0 Credits Rafie Muhammad Patchstack Requir...
WordPress WP Group Promoter plugin <= 1.0.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WP Group Promoter plugin versions = 1.0.8. Solution No patched version available...