WordPress Embed Video Thumbnail Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Embed Video Thumbnail Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8566e0ea18cd Credits Rafie Muhammad Patchstack...

WordPress WP VR Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WP VR Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer WPFunnels Team PSID de1111c82f8a Credits Rafie Muhammad Patchstack Required privilege...

WordPress Menukaart - Restaurant Menu & Online Ordering with WooCommerce Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Menukaart - Restaurant Menu & Online Ordering with WooCommerce Type Plugin Vulnerable versions = 1.3 Fixed in 1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 0dd6733ef2c4...

WordPress BuddyForms Moderation ( Former: Review Logic ) Plugin <= 1.4.7 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Moderation Former: Review Logic Type Plugin Vulnerable versions = 1.4.7 Fixed in 1.4.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8604cd24c7fb Credits Rafie...

WordPress Contact Form By Mega Forms – Drag and Drop Form Builder Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form By Mega Forms – Drag and Drop Form Builder Type Plugin Vulnerable versions = 1.1.2 Fixed in 1.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 5d66bb9d8b9f...

WordPress Image Photo Gallery Final Tiles Grid Plugin <= 3.5.6 is vulnerable to Cross Site Scripting (XSS)

Software Image Photo Gallery Final Tiles Grid Type Plugin Vulnerable versions = 3.5.6 Fixed in 3.5.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 37480a127ac6 Credits Rafie Muhammad...

WordPress DeMomentSomTres Immediate Send Plugin <= 3.201704251244 is vulnerable to Cross Site Scripting (XSS)

Software DeMomentSomTres Immediate Send Type Plugin Vulnerable versions = 3.201704251244 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 395b22880d0c Credits Rafie Muhammad...

WordPress Stop User Enumeration Plugin <= 1.3.33 is vulnerable to Cross Site Scripting (XSS)

Software Stop User Enumeration Type Plugin Vulnerable versions = 1.3.33 Fixed in 1.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Fullworks Plugins PSID 22f6daf0abff Credits Rafie Muhammad Patchstack...

WordPress WP AutoTerms: Privacy Policy Generator (GDPR & CCPA), Terms & Conditions Generator, Cookie Notice Banner Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Software WP AutoTerms: Privacy Policy Generator GDPR & CCPA, Terms & Conditions Generator, Cookie Notice Banner Type Plugin Vulnerable versions = 1.8.2 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1...

WordPress Coming Soon Pages for WordPress - Coming Soon Booster Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Coming Soon Pages for WordPress - Coming Soon Booster Type Plugin Vulnerable versions = 1.0.6 Fixed in 1.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 5b2ff11e8b80 Credit...

WordPress Custom Welcome Guide Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Custom Welcome Guide Type Plugin Vulnerable versions = 1.0.8 Fixed in 1.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 0f8aead91a99 Credits Rafie Muhammad Patchstack...

WordPress Divi Carousel Lite Plugin <= 1.2.11 is vulnerable to Cross Site Scripting (XSS)

Software Divi Carousel Lite Type Plugin Vulnerable versions = 1.2.11 Fixed in 1.2.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a2b273c2e39a Credits Rafie Muhammad Patchstack...

WordPress Ultimate Custom ScrollBar Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Custom ScrollBar Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9b4f77bc482f Credits Rafie Muhammad Patchstack...

WordPress bbResolutions Plugin <= 0.7 is vulnerable to Cross Site Scripting (XSS)

Software bbResolutions Type Plugin Vulnerable versions = 0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 33976c10ced6 Credits Rafie Muhammad Patchstack Required privile...

WordPress WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to fix Insecure Content Plugin <= 6.2.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect to fix Insecure Content Type Plugin Vulnerable versions = 6.2.0 Fixed in 6.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer...

WordPress WP Required Taxonomies – Categories and Tags Mandatory Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS)

Software WP Required Taxonomies – Categories and Tags Mandatory Type Plugin Vulnerable versions = 1.1.7 Fixed in 1.1.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9fdffcdf06a8 Credi...

WordPress BuddyForms Form Elements for WooCommerce Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Form Elements for WooCommerce Type Plugin Vulnerable versions = 1.4.1 Fixed in 1.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 935b2e87bd86 Credits Rafie...

WordPress WooCommerce Tiered Price Table Plugin <= 3.5.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Tiered Price Table Type Plugin Vulnerable versions = 3.5.0 Fixed in 3.5.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9b5f585c6785 Credits Rafie Muhammad...

WordPress SV Forms Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Forms Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.02 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3d5feaf66d74 Credits Rafie Muhammad Patchstack Required...

WordPress Contact form builder for Gutenberg - Formello Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Contact form builder for Gutenberg - Formello Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9de8c7507f30 Credits Rafie...