WordPress Automatic YouTube Gallery Plugin < 2.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Automatic YouTube Gallery Type Plugin Vulnerable versions 2.3.3 Fixed in 2.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ed4d7f0ef45b Credits Rafie Muhammad Patchstac...

WordPress BlogSafe Scanner Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Software BlogSafe Scanner Type Plugin Vulnerable versions = 1.1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e47a3b031425 Credits Rafie Muhammad Patchstack Require...

WordPress Internal Link Juicer: SEO Auto Linker for WordPress Plugin < 2.23.2 is vulnerable to Cross Site Scripting (XSS)

Software Internal Link Juicer: SEO Auto Linker for WordPress Type Plugin Vulnerable versions 2.23.2 Fixed in 2.23.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 99dd5685544e...

WordPress Contact Form DB Divi Plugin < 1.2 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form DB Divi Type Plugin Vulnerable versions 1.2 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7b57e95fddc1 Credits Rafie Muhammad Patchstack Require...

WordPress Cuisine Palace Theme <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Cuisine Palace Type Theme Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 37c5a3d00c1a Credits Rafie Muhammad Patchstack Required...

WordPress Document Viewer for Office Plugin < 2.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Document Viewer for Office Type Plugin Vulnerable versions 2.2.7 Fixed in 2.2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d9616ec54053 Credits Rafie Muhammad Patchsta...

WordPress Before and After Product Images for WooCommerce Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Before and After Product Images for WooCommerce Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 667bb1121fd9 Credits...

WordPress Premmerce WooCommerce Customers Manager Plugin <= 1.1.13 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce WooCommerce Customers Manager Type Plugin Vulnerable versions = 1.1.13 Fixed in 1.1.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID b3dee6c5c8f0 Credits Rafie Muhamm...

WordPress Court Reservation – Manage Your Court Bookings Online Plugin <= 1.9.0 is vulnerable to Cross Site Scripting (XSS)

Software Court Reservation – Manage Your Court Bookings Online Type Plugin Vulnerable versions = 1.9.0 Fixed in 1.9.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b8d73c11bad9...

WordPress Search Merchandising – Track & Manage WooCommerce Product Search Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Search Merchandising – Track & Manage WooCommerce Product Search Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Fast Index Plugin <= 1.9 is vulnerable to Cross Site Scripting (XSS)

Software Fast Index Type Plugin Vulnerable versions = 1.9 Fixed in 1.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1efd80ca1662 Credits Rafie Muhammad Patchstack Required...

WordPress Ant Admin Notices for Team Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Ant Admin Notices for Team Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2410afb1f6ab Credits Rafie Muhammad Patchsta...

WordPress Ultimeter Plugin < 2.8.3 is vulnerable to Cross Site Scripting (XSS)

Software Ultimeter Type Plugin Vulnerable versions 2.8.3 Fixed in 2.8.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c6dbf05fd248 Credits Rafie Muhammad Patchstack Required...

WordPress Delivery & Pickup Scheduling DateTime Picker Plugin for WooCommerce - Date Time Picker Plugin for WooCommerce Plugin <= 1.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Delivery & Pickup Scheduling DateTime Picker Plugin for WooCommerce - Date Time Picker Plugin for WooCommerce Type Plugin Vulnerable versions = 1.0.11 Fixed in 1.0.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity...

WordPress Music Player for Elementor – Audio Player & Podcast Player Plugin < 1.5.9.9 is vulnerable to Cross Site Scripting (XSS)

Software Music Player for Elementor – Audio Player & Podcast Player Type Plugin Vulnerable versions 1.5.9.9 Fixed in 1.5.9.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress WordPress Expert Agent XML Feed Plugin <= 2.1.3 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Expert Agent XML Feed Type Plugin Vulnerable versions = 2.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 09eb8ef56aa2 Credits Rafie Muhammad...

WordPress Delete old Posts automatically Plugin < 3.3.9 is vulnerable to Cross Site Scripting (XSS)

Software Delete old Posts automatically Type Plugin Vulnerable versions 3.3.9 Fixed in 3.3.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 46270e2e981b Credits Rafie Muhammad...

WordPress TwentyFourth WP Scraper Plugin <= 0.6.5 is vulnerable to Cross Site Scripting (XSS)

Software TwentyFourth WP Scraper Type Plugin Vulnerable versions = 0.6.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f8302abdf1de Credits Rafie Muhammad Patchstack...

WordPress Multilist Subscribe for Sendy Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Multilist Subscribe for Sendy Type Plugin Vulnerable versions = 1.6.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 92425a5d4204 Credits Rafie Muhammad...

WordPress Surbma | GDPR Proof Cookie Consent & Notice Bar Plugin < 17.8.2 is vulnerable to Cross Site Scripting (XSS)

Software Surbma | GDPR Proof Cookie Consent & Notice Bar Type Plugin Vulnerable versions 17.8.2 Fixed in 17.8.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 17767534824b Credits...