WordPress NewsHit Theme <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software NewsHit Type Theme Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a04dcff42173 Credits Rafie Muhammad Patchstack Required privileg...

WordPress WP Security Safe Plugin <= 2.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Security Safe Type Plugin Vulnerable versions = 2.5.1 Fixed in 2.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 65de9592a0f7 Credits Rafie Muhammad Patchstack...

WordPress Wallet Up Plugin <= 3.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Wallet Up Type Plugin Vulnerable versions = 3.2.7 Fixed in 3.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a4dec02c5f4a Credits Rafie Muhammad Patchstack Required...

WordPress Ad Blocker Notify Lite Plugin <= 2.4.0 is vulnerable to Cross Site Scripting (XSS)

Software Ad Blocker Notify Lite Type Plugin Vulnerable versions = 2.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ed8dd91a7730 Credits Rafie Muhammad Patchstack...

WordPress Independent Analytics - Google Analytics Alternative for WordPress Plugin < 1.26.0 is vulnerable to Cross Site Scripting (XSS)

Software Independent Analytics - Google Analytics Alternative for WordPress Type Plugin Vulnerable versions 1.26.0 Fixed in 1.26.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Premmerce Product Search for WooCommerce Plugin <= 2.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce Product Search for WooCommerce Type Plugin Vulnerable versions = 2.2.3 Fixed in 2.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID df89cf768ffd Credits Rafie Muhamma...

WordPress Unlimited Theme Addon For Elementor and WooCommerce Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS)

Software Unlimited Theme Addon For Elementor and WooCommerce Type Plugin Vulnerable versions = 1.1.9 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6d5498e5f5ec...

WordPress Forms to Klaviyo Plugin <= 5.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Forms to Klaviyo Type Plugin Vulnerable versions = 5.2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 48b75fce56c6 Credits Rafie Muhammad Patchstack Require...

WordPress Magic Post Thumbnail Plugin < 4.1.13 is vulnerable to Cross Site Scripting (XSS)

Software Magic Post Thumbnail Type Plugin Vulnerable versions 4.1.13 Fixed in 4.1.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b012adb9b8a4 Credits Rafie Muhammad Patchstack...

WordPress BBP Core - Expand bbPress powered forums with useful features Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software BBP Core - Expand bbPress powered forums with useful features Type Plugin Vulnerable versions = 1.1.0 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Ultimate Gutenberg – Custom Block Templates Plugin <= 2.5.1 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Gutenberg – Custom Block Templates Type Plugin Vulnerable versions = 2.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 729999fffaff Credits Rafie...

WordPress WooCommerce EU VAT Assistant Plugin <= 2.0.43.230518 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce EU VAT Assistant Type Plugin Vulnerable versions = 2.0.43.230518 Fixed in 2.1.2.230718 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b78924498cc5 Credits Rafi...

WordPress One Click Login Plugin <= 1.24.0 is vulnerable to Cross Site Scripting (XSS)

Software One Click Login Type Plugin Vulnerable versions = 1.24.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2aa3a0f8b2a9 Credits Rafie Muhammad Patchstack Require...

WordPress Grid & Styler For Contact Form 7 And Divi Plugin < 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Grid & Styler For Contact Form 7 And Divi Type Plugin Vulnerable versions 1.5.2 Fixed in 1.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 52e8165fef23 Credits Rafie...

WordPress Send Prebuilt Emails Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Send Prebuilt Emails Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e40ed22ae602 Credits Rafie Muhammad Patchstack...

WordPress Bulk Auto Image Alt Text (Alt tag, Alt attribute) optimization (image SEO) + Woocommerce Plugin < 1.4.7.2 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Auto Image Alt Text Alt tag, Alt attribute optimization image SEO + Woocommerce Type Plugin Vulnerable versions 1.4.7.2 Fixed in 1.4.7.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Cla...

WordPress Freshing Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Freshing Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 21faf439d0ae Credits Rafie Muhammad Patchstack Required...

WordPress WordPress Everse Starter Sites – Elementor Templates Plugin < 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Everse Starter Sites – Elementor Templates Type Plugin Vulnerable versions 1.2.2 Fixed in 1.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8f53de574344 Credi...

WordPress Bootstrap Fitness Theme < 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Bootstrap Fitness Type Theme Vulnerable versions 1.0.6 Fixed in 1.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 151cad56de76 Credits Rafie Muhammad Patchstack Require...

WordPress HM Multiple Roles Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software HM Multiple Roles Type Plugin Vulnerable versions = 1.8 Fixed in 1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7297b541283e Credits Rafie Muhammad Patchstack Required...