WordPress wGauge – Free Version Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software wGauge – Free Version Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 34428bd81dad Credits Rafie Muhammad Patchstack...

WordPress Accordion & FAQ – Helpie WordPress Accordion FAQ Plugin Plugin < 1.9.13 is vulnerable to Cross Site Scripting (XSS)

Software Accordion & FAQ – Helpie WordPress Accordion FAQ Plugin Type Plugin Vulnerable versions 1.9.13 Fixed in 1.9.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 753ef980e693...

WordPress Custom User Guide Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Custom User Guide Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 73064f77dce5 Credits Rafie Muhammad Patchstack...

WordPress SheetPress – Manage WordPress Meta data with Google Sheets Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software SheetPress – Manage WordPress Meta data with Google Sheets Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4116f6cb7166...

WordPress Bootstrap Coach Theme < 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Bootstrap Coach Type Theme Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 56159c2dd7f6 Credits Rafie Muhammad Patchstack Required...

WordPress Drip Feed Content Extended for Learndash Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Drip Feed Content Extended for Learndash Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cab77cdefc15 Credits Rafie...

WordPress Video Reviews / Video Widget Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Video Reviews / Video Widget Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7dac09181d24 Credits Rafie Muhammad...

WordPress Product Image Watermark for Woo Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Product Image Watermark for Woo Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 75275bbab7e3 Credits Rafie Muhammad...

WordPress Internal Comments Plugin <= 1.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Internal Comments Type Plugin Vulnerable versions = 1.2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4ebc42631ae8 Credits Rafie Muhammad Patchstack Requir...

WordPress WP Travel Engine Plugin < 5.7.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Travel Engine Type Plugin Vulnerable versions 5.7.5 Fixed in 5.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 801294ac323a Credits Rafie Muhammad Patchstack Require...

WordPress Delivery Drivers Manager Plugin < 1.1.9 is vulnerable to Cross Site Scripting (XSS)

Software Delivery Drivers Manager Type Plugin Vulnerable versions 1.1.9 Fixed in 1.1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3011dbed9d9e Credits Rafie Muhammad Patchstack...

WordPress WordPress Slider Plugin – Block Slider Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Slider Plugin – Block Slider Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a643ba97e0d5 Credits Rafie...

WordPress Noted PRO Plugin <= 1.02 is vulnerable to Cross Site Scripting (XSS)

Software Noted PRO Type Plugin Vulnerable versions = 1.02 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 52e1f269cd85 Credits Rafie Muhammad Patchstack Required...

WordPress WP-HR Manager: The Human Resources Plugin for WordPress Plugin <= 3.0.8 is vulnerable to Cross Site Scripting (XSS)

Software WP-HR Manager: The Human Resources Plugin for WordPress Type Plugin Vulnerable versions = 3.0.8 Fixed in 3.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4bb08ee51e2f...

WordPress Kanzu Support Desk – WordPress Helpdesk Plugin Plugin <= 2.4.7 is vulnerable to Cross Site Scripting (XSS)

Software Kanzu Support Desk – WordPress Helpdesk Plugin Type Plugin Vulnerable versions = 2.4.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 331294a938f2 Credits Raf...

WordPress Bulk Edit and Create User Profiles – WP Sheet Editor Plugin < 1.5.26 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Edit and Create User Profiles – WP Sheet Editor Type Plugin Vulnerable versions 1.5.26 Fixed in 1.5.26 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8d00b38962a5...

WordPress Glossary Plugin < 2.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Glossary Type Plugin Vulnerable versions 2.2.4 Fixed in 2.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ec7d0be9f6b5 Credits Rafie Muhammad Patchstack Required...

WordPress Content Slider for WP Posts (Section Slider) Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS)

Software Content Slider for WP Posts Section Slider Type Plugin Vulnerable versions = 0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9e0ed6db33b1 Credits Rafie...

WordPress Internal Link Flow & Topical Authority & Topical Map Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Internal Link Flow & Topical Authority & Topical Map Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 294360c372a8 Credi...

WordPress Sales Page Addon – Elementor & Beaver Builder Plugin < 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Sales Page Addon – Elementor & Beaver Builder Type Plugin Vulnerable versions 1.4.1 Fixed in 1.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f3400abfe05c Credits Rafi...