WordPress Mapster WP Maps Plugin < 1.2.36 is vulnerable to Cross Site Scripting (XSS)

Software Mapster WP Maps Type Plugin Vulnerable versions 1.2.36 Fixed in 1.2.36 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42d3f06779ba Credits Rafie Muhammad Patchstack Requir...

WordPress Ultimate Gutenberg – Custom Block Templates Plugin <= 2.5.1 is vulnerable to Cross Site Scripting (XSS)

Software Ultimate Gutenberg – Custom Block Templates Type Plugin Vulnerable versions = 2.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 729999fffaff Credits Rafie...

WordPress WooCommerce EU VAT Assistant Plugin <= 2.0.43.230518 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce EU VAT Assistant Type Plugin Vulnerable versions = 2.0.43.230518 Fixed in 2.1.2.230718 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b78924498cc5 Credits Rafi...

WordPress Woo Ukrposhta Plugin <= 1.6.18 is vulnerable to Cross Site Scripting (XSS)

Software Woo Ukrposhta Type Plugin Vulnerable versions = 1.6.18 Fixed in 1.17.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID de1e22b9d945 Credits Rafie Muhammad Patchstack Requir...

WordPress Pixel & tracking codes for Google Web stories (formerly AMP Stories) Plugin < 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Pixel & tracking codes for Google Web stories formerly AMP Stories Type Plugin Vulnerable versions 1.0.5 Fixed in 1.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Block Styler For Gravity Forms Plugin < 6.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Block Styler For Gravity Forms Type Plugin Vulnerable versions 6.3.0 Fixed in 6.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cb51772428c4 Credits Rafie Muhammad...

WordPress Easy Age Verify Plugin < 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Software Easy Age Verify Type Plugin Vulnerable versions 1.8.2 Fixed in 1.8.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 210e67e29951 Credits Rafie Muhammad Patchstack Required...

WordPress One Click Login Plugin <= 1.24.0 is vulnerable to Cross Site Scripting (XSS)

Software One Click Login Type Plugin Vulnerable versions = 1.24.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2aa3a0f8b2a9 Credits Rafie Muhammad Patchstack Require...

WordPress Lifestyle Magazine Theme < 10.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Lifestyle Magazine Type Theme Vulnerable versions 10.2.1 Fixed in 10.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2076aff82f0d Credits Rafie Muhammad Patchstack...

WordPress Grid & Styler For Contact Form 7 And Divi Plugin < 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Grid & Styler For Contact Form 7 And Divi Type Plugin Vulnerable versions 1.5.2 Fixed in 1.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 52e8165fef23 Credits Rafie...

WordPress Ads.txt & App-ads.txt Manager for WordPress Plugin < 1.1.7.1 is vulnerable to Cross Site Scripting (XSS)

Software Ads.txt & App-ads.txt Manager for WordPress Type Plugin Vulnerable versions 1.1.7.1 Fixed in 1.1.7.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5d2851ffbfc5 Credits...

WordPress Send Prebuilt Emails Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Send Prebuilt Emails Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e40ed22ae602 Credits Rafie Muhammad Patchstack...

WordPress Bulk Auto Image Alt Text (Alt tag, Alt attribute) optimization (image SEO) + Woocommerce Plugin < 1.4.7.2 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Auto Image Alt Text Alt tag, Alt attribute optimization image SEO + Woocommerce Type Plugin Vulnerable versions 1.4.7.2 Fixed in 1.4.7.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Cla...

WordPress Freshing Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Freshing Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 21faf439d0ae Credits Rafie Muhammad Patchstack Required...

WordPress WordPress Everse Starter Sites – Elementor Templates Plugin < 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Everse Starter Sites – Elementor Templates Type Plugin Vulnerable versions 1.2.2 Fixed in 1.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8f53de574344 Credi...

WordPress Bootstrap Fitness Theme < 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Bootstrap Fitness Type Theme Vulnerable versions 1.0.6 Fixed in 1.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 151cad56de76 Credits Rafie Muhammad Patchstack Require...

WordPress WP Custom field for Gutenberg Editor Plugin <= 1.7.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Custom field for Gutenberg Editor Type Plugin Vulnerable versions = 1.7.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7594c076aa0a Credits Rafie Muhamma...

WordPress HM Multiple Roles Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software HM Multiple Roles Type Plugin Vulnerable versions = 1.8 Fixed in 1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7297b541283e Credits Rafie Muhammad Patchstack Required...

WordPress Best Responsive Comparison Table for Gutenberg Editor – NicheTable Plugin <= 2.6.5 is vulnerable to Cross Site Scripting (XSS)

Software Best Responsive Comparison Table for Gutenberg Editor – NicheTable Type Plugin Vulnerable versions = 2.6.5 Fixed in 2.8.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress FooBox Image Lightbox Plugin < 2.7.27 is vulnerable to Cross Site Scripting (XSS)

Software FooBox Image Lightbox Type Plugin Vulnerable versions 2.7.27 Fixed in 2.7.27 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0aedda1b7b63 Credits Rafie Muhammad Patchstack...