WordPress CF7 WOW Styler Plugin < 1.5.4 is vulnerable to Cross Site Scripting (XSS)

Software CF7 WOW Styler Type Plugin Vulnerable versions 1.5.4 Fixed in 1.5.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Tobias PSID 838f3b70bdfc Credits Rafie Muhammad Patchstack Required privilege...

WordPress TK SmugMug Slideshow Shortcode Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)

Software TK SmugMug Slideshow Shortcode Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a44f02d512b6 Credits Rafie Muhammad...

WordPress Dreamfox Media Payment gateway per Product for Woocommerce Plugin < 3.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Dreamfox Media Payment gateway per Product for Woocommerce Type Plugin Vulnerable versions 3.2.7 Fixed in 3.2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f228b3d2c1e8...

WordPress Top Bar – PopUps – by WPOptin Plugin <= 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Software Top Bar – PopUps – by WPOptin Type Plugin Vulnerable versions = 1.2.6 Fixed in 1.2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cc20ab59ac51 Credits Rafie Muhammad...

WordPress Wp Default Sender Email by IT Pixelz Plugin <= 2.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Wp Default Sender Email by IT Pixelz Type Plugin Vulnerable versions = 2.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4cc42f5d1c0e Credits Rafie Muhamma...

WordPress Themereps Helper Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Themereps Helper Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6799bde950c0 Credits Rafie Muhammad Patchstack Require...

WordPress Free Shipping Label and Progress Bar for WooCommerce Plugin < 2.6.12 is vulnerable to Cross Site Scripting (XSS)

Software Free Shipping Label and Progress Bar for WooCommerce Type Plugin Vulnerable versions 2.6.12 Fixed in 2.6.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0ce90fbf8a11...

WordPress Coupon Affiliates Plugin < 5.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Coupon Affiliates Type Plugin Vulnerable versions 5.6.0 Fixed in 5.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer RelyWP PSID de39047c211f Credits Rafie Muhammad Patchstack Required...

WordPress RSS feed with featured images | RSS Chimp Plugin < 1.2.5 is vulnerable to Cross Site Scripting (XSS)

Software RSS feed with featured images | RSS Chimp Type Plugin Vulnerable versions 1.2.5 Fixed in 1.2.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a074166be2d5 Credits Rafie...

WordPress WP REST Filter Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software WP REST Filter Type Plugin Vulnerable versions = 1.4.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8dfe74661dc7 Credits Rafie Muhammad Patchstack Required...

WordPress Smart Protect Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Smart Protect Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e36cca3fb743 Credits Rafie Muhammad Patchstack Required...

WordPress WordPress eCommerce Plugin – Studiocart Plugin < 2.5.20 is vulnerable to Cross Site Scripting (XSS)

Software WordPress eCommerce Plugin – Studiocart Type Plugin Vulnerable versions 2.5.20 Fixed in 2.5.20 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5eb1bf45cbd4 Credits Rafie...

WordPress Contact Form 7 Multi-Step Forms Plugin < 4.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form 7 Multi-Step Forms Type Plugin Vulnerable versions 4.3.1 Fixed in 4.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4442b3e885b0 Credits Rafie Muhammad...

WordPress Backup Bolt Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Backup Bolt Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6cdb95fd5dfc Credits Rafie Muhammad Patchstack Required...

WordPress WooKit – WooCommerce Tools & Customizations Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)

Software WooKit – WooCommerce Tools & Customizations Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 650930cce60d Credits Rafie...

WordPress Master Blocks – Gutenberg Site Builder Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Master Blocks – Gutenberg Site Builder Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ff08f9c52cf5 Credits Rafie...

WordPress SpamJam Plugin < 0.4.0 is vulnerable to Cross Site Scripting (XSS)

Software SpamJam Type Plugin Vulnerable versions 0.4.0 Fixed in 0.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dbc09ee79d95 Credits Rafie Muhammad Patchstack Required privile...

WordPress Smart Variations Images & Swatches for WooCommerce Plugin < 5.2.8 is vulnerable to Cross Site Scripting (XSS)

Software Smart Variations Images & Swatches for WooCommerce Type Plugin Vulnerable versions 5.2.8 Fixed in 5.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8c57c7b671c4 Credits...

WordPress netFORUM Single Sign On Plugin <= 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software netFORUM Single Sign On Type Plugin Vulnerable versions = 1.3.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9ddecf76497f Credits Rafie Muhammad Patchstack...

WordPress Code Manager Plugin < 1.0.26 is vulnerable to Cross Site Scripting (XSS)

Software Code Manager Type Plugin Vulnerable versions 1.0.26 Fixed in 1.0.26 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 788e1414e608 Credits Rafie Muhammad Patchstack Required...