WordPress WP Sessions Time Monitoring Full Automatic Plugin < 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software WP Sessions Time Monitoring Full Automatic Type Plugin Vulnerable versions 1.0.6 Fixed in 1.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 61dc602b36d2 Credits Rafie...

WordPress Advanced Classifieds & Directory Pro Plugin < 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Classifieds & Directory Pro Type Plugin Vulnerable versions 2.1.2 Fixed in 2.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b009c6df7451 Credits Rafie Muhamma...

WordPress Active User Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Active User Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 168aede3d371 Credits Rafie Muhammad Patchstack Required...

WordPress Content Scheduler: Editorial Calendar and Notes Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Content Scheduler: Editorial Calendar and Notes Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bce889e4798c Credits...

WordPress WP Lead Stream Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)

Software WP Lead Stream Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d2971cba9459 Credits Rafie Muhammad Patchstack Required...

WordPress WP Meta and Date Remover Plugin < 1.9.10 is vulnerable to Cross Site Scripting (XSS)

Software WP Meta and Date Remover Type Plugin Vulnerable versions 1.9.10 Fixed in 1.9.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2f546a378ae2 Credits Rafie Muhammad Patchsta...

WordPress Emails Blacklist for Everest Forms Plugin < 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Emails Blacklist for Everest Forms Type Plugin Vulnerable versions 1.0.4 Fixed in 1.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ca3c9ef88aae Credits Rafie Muhammad...

WordPress Contact Form 7 Designer Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form 7 Designer Type Plugin Vulnerable versions = 2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3bce7165bcf5 Credits Rafie Muhammad Patchstack...

WordPress Relax Spa Theme < 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Relax Spa Type Theme Vulnerable versions 1.1.1 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b6d96cda06db Credits Rafie Muhammad Patchstack Required...

WordPress Anfrageformular – Multi Step Drag & Drop Formular Builder – Leadgenerierung Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Anfrageformular – Multi Step Drag & Drop Formular Builder – Leadgenerierung Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PS...

WordPress Opensea Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Opensea Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d4de12a3cf9 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Inbound Brew Plugin <= 1.9.4 is vulnerable to Cross Site Scripting (XSS)

Software Inbound Brew Type Plugin Vulnerable versions = 1.9.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cd2aea3ded57 Credits Rafie Muhammad Patchstack Required...

WordPress WordPress Dev Powers – Element Selector jQuery Powers Plugin Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Dev Powers – Element Selector jQuery Powers Plugin Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 441b1a9fb4...

WordPress Business Profile Reviews Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Business Profile Reviews Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b0e3678a0ced Credits Rafie Muhammad Patchstack...

WordPress Different Home for Logged IN & Logged OUT Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Different Home for Logged IN & Logged OUT Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 003ec4cecce4 Credits Rafie...

WordPress Quick Affiliate Store Plugin <= 0.5.1 is vulnerable to Cross Site Scripting (XSS)

Software Quick Affiliate Store Type Plugin Vulnerable versions = 0.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 74363ba37f24 Credits Rafie Muhammad Patchstack...

WordPress Tweet Old Custom Post Plugin <= 19.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Tweet Old Custom Post Type Plugin Vulnerable versions = 19.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 052dae11c71c Credits Rafie Muhammad Patchstack...

WordPress RelicWP Helper Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software RelicWP Helper Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6d323152ffbc Credits Rafie Muhammad Patchstack Required...

WordPress RevivePress Plugin < 1.5.3 is vulnerable to Cross Site Scripting (XSS)

Software RevivePress Type Plugin Vulnerable versions 1.5.3 Fixed in 1.5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e19b58dc50bd Credits Rafie Muhammad Patchstack Required...

WordPress Floating Awesome Button Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Floating Awesome Button Type Plugin Vulnerable versions = 1.6.1 Fixed in 1.7.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a554276c1f96 Credits Rafie Muhammad Patchstac...