WordPress Internal Link Flow & Topical Authority & Topical Map Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Internal Link Flow & Topical Authority & Topical Map Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 294360c372a8 Credi...

WordPress BookIt Plugin < 2.4.0 is vulnerable to Cross Site Scripting (XSS)

Software BookIt Type Plugin Vulnerable versions 2.4.0 Fixed in 2.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Liquid Web / StellarWP PSID 6ec153a6ea5e Credits Rafie Muhammad Patchstack Required...

WordPress Sales Page Addon – Elementor & Beaver Builder Plugin < 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Sales Page Addon – Elementor & Beaver Builder Type Plugin Vulnerable versions 1.4.1 Fixed in 1.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f3400abfe05c Credits Rafi...

WordPress Cart Weight for WooCommerce Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Cart Weight for WooCommerce Type Plugin Vulnerable versions = 1.0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 697cc226182a Credits Rafie Muhammad...

WordPress Chic Lifestyle Theme < 10.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Chic Lifestyle Type Theme Vulnerable versions 10.0.8 Fixed in 10.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 85d12c52391e Credits Rafie Muhammad Patchstack Required...

WordPress Panorama Viewer – 360 Degree Image + Video Viewer Plugin < 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Panorama Viewer – 360 Degree Image + Video Viewer Type Plugin Vulnerable versions 1.0.9 Fixed in 1.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 90a4b4196c3c Credits...

WordPress Page Manager for Elementor Plugin <= 2.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Page Manager for Elementor Type Plugin Vulnerable versions = 2.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c9cdb3c256dd Credits Rafie Muhammad Patchsta...

WordPress Кнопка Яндекс Денег Plugin <= 2.4.0 is vulnerable to Cross Site Scripting (XSS)

Software Кнопка Яндекс Денег Type Plugin Vulnerable versions = 2.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5ecb1fd65545 Credits Rafie Muhammad Patchstack...

WordPress DIVI Maker – Create your own DIVI Modules Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)

Software DIVI Maker – Create your own DIVI Modules Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c8935540b0df Credits Rafie...

WordPress Display Eventbrite Events Plugin < 5.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Display Eventbrite Events Type Plugin Vulnerable versions 5.3.3 Fixed in 5.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Fullworks Plugins PSID b65580fd09a1 Credits Rafie Muhammad...

WordPress Ted – WordPress Text Editor Plugin Plugin <= 0.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Ted – WordPress Text Editor Plugin Type Plugin Vulnerable versions = 0.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 263721f4318b Credits Rafie Muhammad...

WordPress Sync eCommerce NEO Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)

Software Sync eCommerce NEO Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9dbd1f3d1861 Credits Rafie Muhammad Patchstack Require...

WordPress Cleanup Action Scheduler Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Cleanup Action Scheduler Type Plugin Vulnerable versions = 1.1.0 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 658cd4ed1a2b Credits Rafie Muhammad Patchsta...

WordPress Revolution for Elementor Plugin <= 4.9.5 is vulnerable to Cross Site Scripting (XSS)

Software Revolution for Elementor Type Plugin Vulnerable versions = 4.9.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8c9663417c14 Credits Rafie Muhammad Patchstack...

WordPress Yuki Theme <= 1.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Yuki Type Theme Vulnerable versions = 1.3.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 376cd5b10558 Credits Rafie Muhammad Patchstack Required privilege...

WordPress WooCommerce Disable Payment Methods based on cart conditions Plugin < 1.16.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Disable Payment Methods based on cart conditions Type Plugin Vulnerable versions 1.16.0 Fixed in 1.16.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Scheduled Notification Bar Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Scheduled Notification Bar Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 18a062a468b5 Credits Rafie Muhammad Patchsta...

WordPress Restrict Posts based on Conditions – Conditional Post Restrictions Plugin < 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Restrict Posts based on Conditions – Conditional Post Restrictions Type Plugin Vulnerable versions 1.2.2 Fixed in 1.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Live Drag and Drop Builder for Contact Form 7 Plugin < 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Software Live Drag and Drop Builder for Contact Form 7 Type Plugin Vulnerable versions 1.2.6 Fixed in 1.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f8dcf6b85301 Credits Rafi...

WordPress Customizer custom controls with Drag and Drop builder – Customizely Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Customizer custom controls with Drag and Drop builder – Customizely Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...