WordPress Issues Tracker Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Issues Tracker Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 524fc4ced1e7 Credits Rafie Muhammad Patchstack Require...

WordPress Issues Tracker plugin <= 1.0.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Issues Tracker plugin versions = 1.0.7. Solution Update the WordPress Issues Tracker plugin to the latest available version at least 1.0.8...

WordPress Issues Tracker plugin <= 1.0.7 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Issues Tracker plugin versions = 1.0.7. Solution Update the WordPress Issues Tracker plugin to the latest available version at least 1.0.8...

Information Disclosure

products.poi is vulnerable to information disclosure. In workflows, the issues tracker inside private folder is visible to anonymous users...