WordPress BuddyForms Attach Post with Group Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Attach Post with Group Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9d4312fdd8bd Credits Rafie Muhammad...

WordPress Member Profile Forms / Custom Registration / Post From Profile in BuddyPress / BuddyBoss Plugin <= 1.4.10 is vulnerable to Cross Site Scripting (XSS)

Software Member Profile Forms / Custom Registration / Post From Profile in BuddyPress / BuddyBoss Type Plugin Vulnerable versions = 1.4.10 Fixed in 1.4.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Cla...

WordPress  Simple blueprint installer Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software  Simple blueprint installer Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID f41952c11427 Credits Rafie Muhammad...

WordPress Gutenberg Block Editor Toolkit Plugin <= 1.16 is vulnerable to Cross Site Scripting (XSS)

Software Gutenberg Block Editor Toolkit Type Plugin Vulnerable versions = 1.16 Fixed in 1.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID d49173f4b0fb Credits Rafie Muhammad Patchsta...

WordPress Popups Plugin <= 1.7.3 is vulnerable to Cross Site Scripting (XSS)

Software Popups Type Plugin Vulnerable versions = 1.7.3 Fixed in 1.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 23e3c6e9af0f Credits Rafie Muhammad Patchstack Required privilege...

WordPress Coming Soon Master Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Coming Soon Master Type Plugin Vulnerable versions = 1.0 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID eeab1b155e0b Credits Rafie Muhammad Patchstack Required...

WordPress BuddyPress Groups Integration for WooCommerce Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software BuddyPress Groups Integration for WooCommerce Type Plugin Vulnerable versions = 1.0.4 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 74e53a4d5f1c Credits Rafie...

WordPress Order Redirects for WooCommerce Plugin <= 0.8 is vulnerable to Cross Site Scripting (XSS)

Software Order Redirects for WooCommerce Type Plugin Vulnerable versions = 0.8 Fixed in 0.8.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b3548bc8e929 Credits Rafie Muhammad...

WordPress Spanish Market Enhancements for WooCommerce Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Spanish Market Enhancements for WooCommerce Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2f56f70008a2 Credits Rafie...

WordPress Joli FAQ SEO – WordPress FAQ Plugin Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Joli FAQ SEO – WordPress FAQ Plugin Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9c8ec0f71765 Credits Rafie Muhammad...

WordPress WordPress WooCommerce Sync for Google Sheet Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress WooCommerce Sync for Google Sheet Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 80c24732fce2 Credits Rafie Muhamm...

WordPress MPG Plugin <= 2.8.12 is vulnerable to Cross Site Scripting (XSS)

Software MPG Type Plugin Vulnerable versions = 2.8.12 Fixed in 3.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 593885fb7e28 Credits Rafie Muhammad Patchstack Required privilege...

WordPress WooCommerce Attribute Stock - Share Stock Between Products (Lite Version) Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Attribute Stock - Share Stock Between Products Lite Version Type Plugin Vulnerable versions = 1.2.1 Fixed in 1.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...

WordPress Bing Custom Search for WordPress Plugin <= 2.4 is vulnerable to Cross Site Scripting (XSS)

Software Bing Custom Search for WordPress Type Plugin Vulnerable versions = 2.4 Fixed in 2.6.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 487fa482beb5 Credits Rafie Muhammad...

WordPress BuddyForms Ultimate Member Plugin <= 1.3.7 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Ultimate Member Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 72707a9ff4f8 Credits Rafie Muhammad Patchstack...

WordPress Quiz Cat Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Quiz Cat Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 067050a23a59 Credits Rafie Muhammad Patchstack Required privileg...

WordPress PublishPress Planner: Organize and Schedule Your WordPress Content Plugin <= 1.9.4 is vulnerable to Cross Site Scripting (XSS)

Software PublishPress Planner: Organize and Schedule Your WordPress Content Type Plugin Vulnerable versions = 1.9.4 Fixed in 1.9.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...

WordPress SV100 Companion Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV100 Companion Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b89ce4a4735c Credits Rafie Muhammad Patchstack Required...

WordPress Subaccounts for WooCommerce Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Subaccounts for WooCommerce Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9c9b80f294b4 Credits Rafie Muhammad Patchstac...

WordPress AI Tools - Chatbot, ChatGPT, Content Generator, Image Generator, Artificial Intelligence GPT Plugin <= 2.3.0 is vulnerable to Cross Site Scripting (XSS)

Software AI Tools - Chatbot, ChatGPT, Content Generator, Image Generator, Artificial Intelligence GPT Type Plugin Vulnerable versions = 2.3.0 Fixed in 3.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer...