3398 matches found
WordPress STAX Header Builder Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS)
Software STAX Header Builder Type Plugin Vulnerable versions = 1.3.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8750093fc2e7 Credits Rafie Muhammad Patchstack...
WordPress Bulk Edit Categories and Tags – Create Thousands Quickly on the Editor Plugin < 1.7.6 is vulnerable to Cross Site Scripting (XSS)
Software Bulk Edit Categories and Tags – Create Thousands Quickly on the Editor Type Plugin Vulnerable versions 1.7.6 Fixed in 1.7.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...
WordPress Contact Widgets For Elementor Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)
Software Contact Widgets For Elementor Type Plugin Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5b33610fc779 Credits Rafie Muhammad...
WordPress Purus Theme <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Purus Type Theme Vulnerable versions = 1.2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4884818f6a93 Credits Rafie Muhammad Patchstack Required privilege...
WordPress Issues Tracker Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Issues Tracker Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 524fc4ced1e7 Credits Rafie Muhammad Patchstack Require...
WordPress Joli Table Of Contents Plugin < 2.0.10 is vulnerable to Cross Site Scripting (XSS)
Software Joli Table Of Contents Type Plugin Vulnerable versions 2.0.10 Fixed in 2.0.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dbdc6cbc5b8e Credits Rafie Muhammad Patchstack...
WordPress Filr – Secure document library Plugin < 1.2.3.1 is vulnerable to Cross Site Scripting (XSS)
Software Filr – Secure document library Type Plugin Vulnerable versions 1.2.3.1 Fixed in 1.2.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Patrick Posner PSID 4238a0e05073 Credits Rafie Muhammad...
WordPress Royal Elementor Addons Plugin < 1.3.71 is vulnerable to Cross Site Scripting (XSS)
Software Royal Elementor Addons Type Plugin Vulnerable versions 1.3.71 Fixed in 1.3.71 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer WProyal PSID f12eb2449894 Credits Rafie Muhammad Patchstack Require...
WordPress Tickera Plugin < 3.4.8.4 is vulnerable to Cross Site Scripting (XSS)
Software Tickera Type Plugin Vulnerable versions 3.4.8.4 Fixed in 3.4.8.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 572bf731f4a5 Credits Rafie Muhammad Patchstack Required...
WordPress Open User Map | Everybody can add locations Plugin < 1.3.17 is vulnerable to Cross Site Scripting (XSS)
Software Open User Map | Everybody can add locations Type Plugin Vulnerable versions 1.3.17 Fixed in 1.3.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9c1e6c504f0a Credits Rafi...
WordPress Integrate Google Drive Plugin < 1.2.3 is vulnerable to Cross Site Scripting (XSS)
Software Integrate Google Drive Type Plugin Vulnerable versions 1.2.3 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5711b66138ac Credits Rafie Muhammad Patchstack...
WordPress Woo Admin Product Notes Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software Woo Admin Product Notes Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2c264a5cbee2 Credits Rafie Muhammad Patchstack...
WordPress Power Ups for Elementor Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Power Ups for Elementor Type Plugin Vulnerable versions = 1.2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5f90ede97ce0 Credits Rafie Muhammad Patchstack...
WordPress Easy Age Verify Plugin < 1.8.2 is vulnerable to Cross Site Scripting (XSS)
Software Easy Age Verify Type Plugin Vulnerable versions 1.8.2 Fixed in 1.8.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 210e67e29951 Credits Rafie Muhammad Patchstack Required...
WordPress GA4WP: Google Analytics for WordPress Plugin < 2.2.0 is vulnerable to Cross Site Scripting (XSS)
Software GA4WP: Google Analytics for WordPress Type Plugin Vulnerable versions 2.2.0 Fixed in 2.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID afc97efd69b5 Credits Rafie Muhamm...
WordPress Mapster WP Maps Plugin < 1.2.36 is vulnerable to Cross Site Scripting (XSS)
Software Mapster WP Maps Type Plugin Vulnerable versions 1.2.36 Fixed in 1.2.36 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42d3f06779ba Credits Rafie Muhammad Patchstack Requir...
WordPress SMS for WooCommerce Plugin <= 2.6 is vulnerable to Cross Site Scripting (XSS)
Software SMS for WooCommerce Type Plugin Vulnerable versions = 2.6 Fixed in 2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0418ff42f218 Credits Rafie Muhammad Patchstack Requir...
WordPress Cleanup Action Scheduler Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)
Software Cleanup Action Scheduler Type Plugin Vulnerable versions = 1.1.0 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 658cd4ed1a2b Credits Rafie Muhammad Patchsta...
WordPress Bani Theme <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)
Software Bani Type Theme Vulnerable versions = 1.0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 34cf7cd408a8 Credits Rafie Muhammad Patchstack Required privilege...
WordPress Pro Broken Links Maintainer Plugin <= 1.1.7.5 is vulnerable to Cross Site Scripting (XSS)
Software Pro Broken Links Maintainer Type Plugin Vulnerable versions = 1.1.7.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 47434af64f98 Credits Rafie Muhammad...