WordPress EventonAI Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software EventonAI Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 14cbf1a2e9d0 Credits Rafie Muhammad Patchstack Required...

WordPress WP Group Promoter Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)

Software WP Group Promoter Type Plugin Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 308d9974dbb0 Credits Rafie Muhammad Patchstack Requir...

WordPress Master Addons for Elementor Plugin < 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Master Addons for Elementor Type Plugin Vulnerable versions 2.0.3 Fixed in 2.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1cb661f3de8e Credits Rafie Muhammad...

WordPress Admin User Search Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Admin User Search Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID baed34e044d2 Credits Rafie Muhammad Patchstack Requir...

WordPress RT Easy Builder – Advanced addons for Elementor Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software RT Easy Builder – Advanced addons for Elementor Type Plugin Vulnerable versions = 1.8 Fixed in 1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8240f5fa6f97 Credits Rafi...

WordPress WooCommerce Simple Frontend Manager Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Simple Frontend Manager Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cc140bdd2f32 Credits Rafie Muhammad...

WordPress Blockington - Gutenberg Blocks for Full Site Editing Page Builder Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Blockington - Gutenberg Blocks for Full Site Editing Page Builder Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Social Gallery Lite Plugin <= 2.3 is vulnerable to Cross Site Scripting (XSS)

Software Social Gallery Lite Type Plugin Vulnerable versions = 2.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c93d40337c31 Credits Rafie Muhammad Patchstack Requir...

WordPress Payment Gateway Groups for WooCommerce Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Payment Gateway Groups for WooCommerce Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b23d24f13593 Credits Rafie...

WordPress SnazzyAdmin WP Admin Theme Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software SnazzyAdmin WP Admin Theme Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e3611a722d35 Credits Rafie Muhammad Patchsta...

WordPress Full Page Blog Designer Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Full Page Blog Designer Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ac6f41a33fc8 Credits Rafie Muhammad Patchstack...

WordPress Ona Theme < 1.18.3 is vulnerable to Cross Site Scripting (XSS)

Software Ona Type Theme Vulnerable versions 1.18.3 Fixed in 1.18.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2d8e2d709222 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Shortcodes Ultimate Plugin <= 5.13.0 is vulnerable to Cross Site Scripting (XSS)

Software Shortcodes Ultimate Type Plugin Vulnerable versions = 5.13.0 Fixed in 5.13.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 568e2ac38f7b Credits Rafie Muhammad Patchstack...

WordPress HQTheme Extra Plugin <= 1.0.19 is vulnerable to Cross Site Scripting (XSS)

Software HQTheme Extra Type Plugin Vulnerable versions = 1.0.19 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bf9979eb70a5 Credits Rafie Muhammad Patchstack Required...

WordPress jav's – WooCommerce and Trello integration WooTrello Plugin <= 3.2.5 is vulnerable to Cross Site Scripting (XSS)

Software jav's – WooCommerce and Trello integration WooTrello Type Plugin Vulnerable versions = 3.2.5 Fixed in 3.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bc6f83d83fa4...

WordPress StreamCast Plugin < 2.1.9 is vulnerable to Cross Site Scripting (XSS)

Software StreamCast Type Plugin Vulnerable versions 2.1.9 Fixed in 2.1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 86ec05693cb6 Credits Rafie Muhammad Patchstack Required...

WordPress Easy Prayer Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)

Software Easy Prayer Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b2c604642d4f Credits Rafie Muhammad Patchstack Required...

WordPress Super Social Content Locker Lite Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Super Social Content Locker Lite Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 96c47939fcea Credits Rafie Muhammad...

WordPress Rocket Maintenance Mode & Coming Soon Page Plugin <= 4.3 is vulnerable to Cross Site Scripting (XSS)

Software Rocket Maintenance Mode & Coming Soon Page Type Plugin Vulnerable versions = 4.3 Fixed in 4.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bee342469bdf Credits Rafie...

WordPress GravityCaptcha Plugin <= 0.5.2 is vulnerable to Cross Site Scripting (XSS)

Software GravityCaptcha Type Plugin Vulnerable versions = 0.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ac93627ffc24 Credits Rafie Muhammad Patchstack Required...