WordPress WP Tools Divi Blog Carousel Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Tools Divi Blog Carousel Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8fda70168d77 Credits Rafie Muhammad Patchstac...

WordPress SV Media Library Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Media Library Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 7f576ca388bc Credits Rafie Muhammad Patchstack Require...

WordPress Simple Tour Guide Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Simple Tour Guide Type Plugin Vulnerable versions = 1.0.5 Fixed in 1.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 16c7f68a1d9d Credits Rafie Muhammad Patchstack Required...

WordPress Contact Form 7 Skins Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form 7 Skins Type Plugin Vulnerable versions = 2.1 Fixed in 2.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 6924d48f2e2e Credits Rafie Muhammad Patchstack Require...

WordPress Stellar Places Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Stellar Places Type Plugin Vulnerable versions = 1.0.7 Fixed in 1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 7cb29a8636b0 Credits Rafie Muhammad Patchstack Required...

WordPress Search Field for Gravity Forms Plugin <= 0.5 is vulnerable to Cross Site Scripting (XSS)

Software Search Field for Gravity Forms Type Plugin Vulnerable versions = 0.5 Fixed in 0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 043a13d5d567 Credits Rafie Muhammad Patchstack...

WordPress Popup Maker Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Popup Maker Type Plugin Vulnerable versions = 1.9.2 Fixed in 1.10.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b1490f38ddc0 Credits Rafie Muhammad Patchstack Required...

WordPress Display WP Admin Pages in the Frontend – WP Frontend Admin Plugin <= 1.20.0 is vulnerable to Cross Site Scripting (XSS)

Software Display WP Admin Pages in the Frontend – WP Frontend Admin Type Plugin Vulnerable versions = 1.20.0 Fixed in 1.21.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2da048d80366...

WordPress Hide Admin Bar Based on User Roles Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)

Software Hide Admin Bar Based on User Roles Type Plugin Vulnerable versions = 1.7 Fixed in 1.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3d22aaa97c1e Credits Rafie Muhammad...

WordPress WordPress Team Members – GS Plugins Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Team Members – GS Plugins Type Plugin Vulnerable versions = 2.2.1 Fixed in 2.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 741ebe0ad0f9 Credits Rafie Muhammad...

WordPress WordPress Auto SEO Plugin – Upfiv SEO Wizard Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Auto SEO Plugin – Upfiv SEO Wizard Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2a56c1fca648 Credits Rafie...

WordPress WordPress Tag Cloud Plugin – Tag Groups Plugin <= 1.44.3.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Tag Cloud Plugin – Tag Groups Type Plugin Vulnerable versions = 1.44.3.1 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 37ceda657852 Credits Rafie...

WordPress Seo Optimized Images Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software Seo Optimized Images Type Plugin Vulnerable versions = 2.0 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4f8787b2dacc Credits Rafie Muhammad Patchstack Required...

WordPress WP Table Pixie Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Table Pixie Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 70bf034f96eb Credits Rafie Muhammad Patchstack Required...

WordPress BuddyForms Posts 2 Posts Plugin <= 1.0.10 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Posts 2 Posts Type Plugin Vulnerable versions = 1.0.10 Fixed in 1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 6d47ac352bde Credits Rafie Muhammad Patchstack...

WordPress Remove WP Update Nags Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software Remove WP Update Nags Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4c53c2dafb06 Credits Rafie Muhammad Patchstack...

WordPress Pay For Post with WooCommerce Plugin <= 3.1.10 is vulnerable to Cross Site Scripting (XSS)

Software Pay For Post with WooCommerce Type Plugin Vulnerable versions = 3.1.10 Fixed in 3.1.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 66dd1df63221 Credits Rafie Muhammad...

WordPress Google Maps Plugin by Intergeo Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Software Google Maps Plugin by Intergeo Type Plugin Vulnerable versions = 1.1.5 Fixed in 1.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 6c46fd667005 Credits Rafie Muhammad...

WordPress DeMomentSomTres Gravity Forms Improvements Plugin <= 20170425 is vulnerable to Cross Site Scripting (XSS)

Software DeMomentSomTres Gravity Forms Improvements Type Plugin Vulnerable versions = 20170425 Fixed in 201805021810 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 477dcd7d6435 Credits...

WordPress WP Activity Log Plugin <= 4.4.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Activity Log Type Plugin Vulnerable versions = 4.4.2.1 Fixed in 4.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Melapress PSID 309a4583a754 Credits Rafie Muhammad Patchstack Required...