WordPress simplelender Plugin <= 1.3.14 is vulnerable to Cross Site Scripting (XSS)

Software simplelender Type Plugin Vulnerable versions = 1.3.14 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 540b2a01d315 Credits Rafie Muhammad Patchstack Required...

WordPress Change Price Title for WooCommerce Plugin <= 2.3 is vulnerable to Cross Site Scripting (XSS)

Software Change Price Title for WooCommerce Type Plugin Vulnerable versions = 2.3 Fixed in 2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 363a9547c8ad Credits Rafie Muhammad...

WordPress EthPress – Web3 Login Plugin < 2.1.1 is vulnerable to Cross Site Scripting (XSS)

Software EthPress – Web3 Login Type Plugin Vulnerable versions 2.1.1 Fixed in 2.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8300c2068fb2 Credits Rafie Muhammad Patchstack...

WordPress Advanced Form Integration Plugin < 1.69.1 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Form Integration Type Plugin Vulnerable versions 1.69.1 Fixed in 1.69.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b9cd0d3cccb3 Credits Rafie Muhammad...

WordPress Modern Addons for Elementor Page Builder Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Modern Addons for Elementor Page Builder Type Plugin Vulnerable versions = 1.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 45e2e45498dc Credits Rafie...

WordPress LMS Plugin – eLearning, Online Courses by Attest Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS)

Software LMS Plugin – eLearning, Online Courses by Attest Type Plugin Vulnerable versions = 1.7.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3780cc3e494d Credits...

WordPress PixiGo Theme <= 1.0.16 is vulnerable to Cross Site Scripting (XSS)

Software PixiGo Type Theme Vulnerable versions = 1.0.16 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d1dff6c0bf87 Credits Rafie Muhammad Patchstack Required privileg...

WordPress WPCake Theme <= 1.2.4 is vulnerable to Cross Site Scripting (XSS)

Software WPCake Type Theme Vulnerable versions = 1.2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 68407b28531f Credits Rafie Muhammad Patchstack Required privilege...

WordPress YouTube Embed - YouTube Gallery, Vimeo Gallery - Wordpress Plugin Plugin <= 10.3 is vulnerable to Cross Site Scripting (XSS)

Software YouTube Embed - YouTube Gallery, Vimeo Gallery - Wordpress Plugin Type Plugin Vulnerable versions = 10.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Apperr – Android and iOS App builder for WooCommerce and WordPress Plugin <= 0.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Apperr – Android and iOS App builder for WooCommerce and WordPress Type Plugin Vulnerable versions = 0.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress WooCommerce Google Sheet Connector Plugin < 1.3.5 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Google Sheet Connector Type Plugin Vulnerable versions 1.3.5 Fixed in 1.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b09a38dc4e5c Credits Rafie Muhammad...

WordPress Inavii for Elementor Social Feed Plugin < 2.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Inavii for Elementor Social Feed Type Plugin Vulnerable versions 2.1.3 Fixed in 2.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9e06abac0d5b Credits Rafie Muhammad...

WordPress Roven Blog Theme <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Roven Blog Type Theme Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f92c1f62e673 Credits Rafie Muhammad Patchstack Required...

WordPress Flight Search Widget and Blocks Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Flight Search Widget and Blocks Type Plugin Vulnerable versions = 1.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 492a34dd0ab4 Credits Rafie Muhammad...

WordPress Responsive Accordion Tabs Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Responsive Accordion Tabs Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 09d7b302a437 Credits Rafie Muhammad Patchstac...

WordPress Woocommerce Customer Reviews with Artificial Intelligence analyzis, with IBM Watson Tone Analyzer Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Woocommerce Customer Reviews with Artificial Intelligence analyzis, with IBM Watson Tone Analyzer Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1...

WordPress Smart phone field for Gravity Forms Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software Smart phone field for Gravity Forms Type Plugin Vulnerable versions = 2.0 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c510b0a80922 Credits Rafie Muhammad...

WordPress Elementor BEMAX Plugin <= 1.5 is vulnerable to Cross Site Scripting (XSS)

Software Elementor BEMAX Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f4c1a4c9489c Credits Rafie Muhammad Patchstack Required...

WordPress WP Event Partners – WordPress Plugin for Event and Conference Management Plugin <= 1.2.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Event Partners – WordPress Plugin for Event and Conference Management Type Plugin Vulnerable versions = 1.2.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSI...

WordPress Remove Add to Cart Button for WooCommerce Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Remove Add to Cart Button for WooCommerce Type Plugin Vulnerable versions = 1.0.3 Fixed in 1.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e8228bf4c98a Credits Rafie...