WordPress Import Social Statistics Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Import Social Statistics Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 847bf2e0ca26 Credits Rafie Muhammad Patchstack...

WordPress All-in-One Video Gallery Plugin < 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Software All-in-One Video Gallery Type Plugin Vulnerable versions 3.4.3 Fixed in 3.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fed726fad706 Credits Rafie Muhammad Patchstack...

WordPress WP Simple Maintenance & Under Construction Mode Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Simple Maintenance & Under Construction Mode Type Plugin Vulnerable versions = 1.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ae5ab24add7b Credits...

WordPress Human Resource Management (HRM) for WordPress – FooPeople Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Human Resource Management HRM for WordPress – FooPeople Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6943e73986ad...

WordPress StreamWeasels Twitch Integration Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS)

Software StreamWeasels Twitch Integration Type Plugin Vulnerable versions = 1.6.7 Fixed in 1.6.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 71e06e3c812c Credits Rafie Muhammad...

WordPress Premmerce SEO for WooCommerce Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce SEO for WooCommerce Type Plugin Vulnerable versions = 2.1.5 Fixed in 2.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID 9b0ae0f180d3 Credits Rafie Muhammad Patchstac...

WordPress Advance Menu Manager Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Advance Menu Manager Type Plugin Vulnerable versions = 3.0.5 Fixed in 3.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 720e04a5ed64 Credits Rafie Muhammad Patchstack...

WordPress WebinarIgnition Plugin < 3.01.3 is vulnerable to Cross Site Scripting (XSS)

Software WebinarIgnition Type Plugin Vulnerable versions 3.01.3 Fixed in 3.01.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Tobias PSID 30c1e2f35176 Credits Rafie Muhammad Patchstack Required...

WordPress Content Sidebars Plugin <= 1.6.8 is vulnerable to Cross Site Scripting (XSS)

Software Content Sidebars Type Plugin Vulnerable versions = 1.6.8 Fixed in 1.7.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 88f4d3ff009b Credits Rafie Muhammad Patchstack...

WordPress Free SSL Certificate Plugin, HTTPS Redirect, Renewal Reminder – Auto-Install Free SSL Plugin < 3.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Free SSL Certificate Plugin, HTTPS Redirect, Renewal Reminder – Auto-Install Free SSL Type Plugin Vulnerable versions 3.6.0 Fixed in 3.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Clai...

WordPress Slider Addons for The Events Calendar Plugin <= 5.6 is vulnerable to Cross Site Scripting (XSS)

Software Slider Addons for The Events Calendar Type Plugin Vulnerable versions = 5.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d83dcd3934a0 Credits Rafie Muhammad...

WordPress WordPress User Management and User Admin Plugin – User Magic Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software WordPress User Management and User Admin Plugin – User Magic Type Plugin Vulnerable versions = 1.0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5dac84f1c8...

WordPress WP Store Locator – Extenders Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software WP Store Locator – Extenders Type Plugin Vulnerable versions = 1.3.2 Fixed in 1.4.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 54d6fd923761 Credits Rafie Muhammad...

WordPress Awesome SSL Plugin <= 1.7.8 is vulnerable to Cross Site Scripting (XSS)

Software Awesome SSL Type Plugin Vulnerable versions = 1.7.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 99ffd587a4e9 Credits Rafie Muhammad Patchstack Required...

WordPress Customer Chat Facebook Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Customer Chat Facebook Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 36d502d50ea9 Credits Rafie Muhammad Patchstack...

WordPress Sky Login Redirect Plugin < 3.7.3 is vulnerable to Cross Site Scripting (XSS)

Software Sky Login Redirect Type Plugin Vulnerable versions 3.7.3 Fixed in 3.7.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 47937b8b3a2f Credits Rafie Muhammad Patchstack...

WordPress Date Picker by Input WP – Sync bookings with external Calendars (.ics) Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software Date Picker by Input WP – Sync bookings with external Calendars .ics Type Plugin Vulnerable versions = 2.2 Fixed in 2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Dynamic Pricing for WooCommerce Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Dynamic Pricing for WooCommerce Type Plugin Vulnerable versions = 1.1.2 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ce0b562a9dd7 Credits Rafie Muhammad...

WordPress WP Gratify Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Gratify Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 28082b5b6655 Credits Rafie Muhammad Patchstack Required...

WordPress G Blog Theme <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software G Blog Type Theme Vulnerable versions = 1.0.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c6d3793144fe Credits Rafie Muhammad Patchstack Required privilege...