WordPress LittleBot ACH for Stripe + Plaid Plugin <= 1.2.8 is vulnerable to Cross Site Scripting (XSS)

Software LittleBot ACH for Stripe + Plaid Type Plugin Vulnerable versions = 1.2.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5af20012a51f Credits Rafie Muhammad...

WordPress LittleBot Invoices Plugin <= 2.6.7 is vulnerable to Cross Site Scripting (XSS)

Software LittleBot Invoices Type Plugin Vulnerable versions = 2.6.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 06757730d70c Credits Rafie Muhammad Patchstack...

WordPress LittleBot ACH for Stripe + Plaid plugin <= 1.2.8 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress LittleBot ACH for Stripe + Plaid plugin versions = 1.2.8. Solution No patched version available...

WordPress LittleBot Invoices plugin <= 2.6.7 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress LittleBot Invoices plugin versions = 2.6.7. Solution No patched version available...

WordPress LittleBot ACH for Stripe + Plaid plugin <= 1.2.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress LittleBot ACH for Stripe + Plaid plugin versions = 1.2.8. Solution No patched version available...

WordPress LittleBot Invoices plugin <= 2.6.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress LittleBot Invoices plugin versions = 2.6.7. Solution No patched version available...