WordPress Video Analytics for Cloudflare Stream Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Video Analytics for Cloudflare Stream Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID ca3447e66eaa Credits Rafie Muhammad...

WordPress Map Plugin alternative to Google Maps using MapQuest, with directions Plugin <= 2.16.1 is vulnerable to Cross Site Scripting (XSS)

Software Map Plugin alternative to Google Maps using MapQuest, with directions Type Plugin Vulnerable versions = 2.16.1 Fixed in 2.16.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...

WordPress The Events Calendar Plugin <= 6.0.13.1 is vulnerable to Cross Site Scripting (XSS)

Software The Events Calendar Type Plugin Vulnerable versions = 6.0.13.1 Fixed in 6.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Liquid Web / StellarWP PSID 6f08490a3495 Credits Rafie Muhammad...

WordPress Information for help Plugin <= 0.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Information for help Type Plugin Vulnerable versions = 0.0.2 Fixed in 0.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4d502a82a628 Credits Rafie Muhammad Patchstack...

WordPress SV Proven Expert Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Proven Expert Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 62003655836a Credits Rafie Muhammad Patchstack Require...

WordPress Extend Filter Products By Price Widget Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Extend Filter Products By Price Widget Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 1a6d03d05dc1 Credits Rafie Muhammad...

WordPress Gift Message for WooCommerce Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS)

Software Gift Message for WooCommerce Type Plugin Vulnerable versions = 1.7.4 Fixed in 1.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3d29cd822d00 Credits Rafie Muhammad Patchsta...

WordPress Protect Uploads with Login – Protect Your Uploads Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software Protect Uploads with Login – Protect Your Uploads Type Plugin Vulnerable versions = 1.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID e35b81720c5e Credits Rafie...

WordPress WooCommerce Country Catalogs – Product Country Restrictions Plugin <= 1.14.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Country Catalogs – Product Country Restrictions Type Plugin Vulnerable versions = 1.14.1 Fixed in 1.14.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID e47887e34eb...

WordPress WP Scrive by Webbstart Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Scrive by Webbstart Type Plugin Vulnerable versions = 1.2.3 Fixed in 1.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 05d2a99ee0f5 Credits Rafie Muhammad Patchstack...

WordPress Live Sales Notification for Woocommerce - Woomotiv Plugin <= 3.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Live Sales Notification for Woocommerce - Woomotiv Type Plugin Vulnerable versions = 3.3.1 Fixed in 3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 825cd413454a Credits Raf...

WordPress Cost Calculator Builder Plugin <= 2.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Cost Calculator Builder Type Plugin Vulnerable versions = 2.3.2 Fixed in 2.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b0d332e53488 Credits Rafie Muhammad Patchstack...

WordPress BlogPost - BlogPost Widgets - Amazing Blog Layouts Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software BlogPost - BlogPost Widgets - Amazing Blog Layouts Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 694940615fc3 Credits Rafie...

WordPress Post List With Featured Image Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Post List With Featured Image Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-37997 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4b187eb850b5 Credits LEE S...

WordPress Share This Image Plugin <= 1.80 is vulnerable to Cross Site Scripting (XSS)

Software Share This Image Type Plugin Vulnerable versions = 1.80 Fixed in 1.81 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3c9ca225ea17 Credits Rafie Muhammad Patchstack Required...

WordPress EmbedPress Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software EmbedPress Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 92c19787339e Credits Rafie Muhammad Patchstack Required...

WordPress Notification Plugin <= 6.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Notification Type Plugin Vulnerable versions = 6.0.4 Fixed in 6.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 58552eb21f66 Credits Rafie Muhammad Patchstack Required...

WordPress DeMomentSomTres WordPress Export Posts With Images Plugin <= 2.5 is vulnerable to Cross Site Scripting (XSS)

Software DeMomentSomTres WordPress Export Posts With Images Type Plugin Vulnerable versions = 2.5 Fixed in 20200610 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 568a0722ed5e Credits...

WordPress WooBuddy Plugin <= 3.4.15 is vulnerable to Cross Site Scripting (XSS)

Software WooBuddy Type Plugin Vulnerable versions = 3.4.15 Fixed in 3.4.16 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2e4b04e137df Credits Rafie Muhammad Patchstack Required...

WordPress BuddyForms Remote Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Remote Type Plugin Vulnerable versions = 1.0.4 Fixed in 1.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 11788d764e29 Credits Rafie Muhammad Patchstack Required...