CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

WordPress Restrict Plugin < 2.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Restrict Type Plugin Vulnerable versions 2.2.4 Fixed in 2.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8b14f609135f Credits Rafie Muhammad Patchstack Required...

WordPress WordApp Mobile App Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

Software WordApp Mobile App Type Plugin Vulnerable versions = 2.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3aec8014f5d8 Credits Rafie Muhammad Patchstack...

Patchstack•added 2023/07/18 12:0 a.m.•5 views

WordPress Floating Tiktok button (Tiktok Follow button)+ Tikcode (QrCode) for Tiktok followers Plugin < 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Floating Tiktok button Tiktok Follow button+ Tikcode QrCode for Tiktok followers Type Plugin Vulnerable versions 1.0.7 Fixed in 1.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim...

WordPress WordPress YouTube, Vimeo and more elements security Plugin (GDPR) Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress YouTube, Vimeo and more elements security Plugin GDPR Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

Patchstack•added 2023/07/18 12:0 a.m.•2 views

WordPress Bulk WooCommerce Category Creator Plugin <= 2.3 is vulnerable to Cross Site Scripting (XSS)

Software Bulk WooCommerce Category Creator Type Plugin Vulnerable versions = 2.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 857dc229de57 Credits Rafie Muhammad...

WordPress Reader Mode - Distraction-Free Content Reader Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Reader Mode - Distraction-Free Content Reader Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5a7281cdb812 Credits Rafi...

6.4AI score

WordPress Justified Gallery Plugin < 1.8.1 is vulnerable to Cross Site Scripting (XSS)

Software Justified Gallery Type Plugin Vulnerable versions 1.8.1 Fixed in 1.8.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1b33d1e3fa93 Credits Rafie Muhammad Patchstack Requir...

Patchstack•added 2023/07/18 12:0 a.m.•5 views

WordPress WP Conference Schedule Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Conference Schedule Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ba96f2b6bb14 Credits Rafie Muhammad Patchstack...

Patchstack•added 2023/07/18 12:0 a.m.•5 views

WordPress Ninja Libs Amazon SES Plugin <= 0.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Ninja Libs Amazon SES Type Plugin Vulnerable versions = 0.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9135775f08e1 Credits Rafie Muhammad Patchstack...

6.4AI score

WordPress CPT-onomies: Using Custom Post Types as Taxonomies Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)

Software CPT-onomies: Using Custom Post Types as Taxonomies Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5d4ba9c21410 Credits...

Patchstack•added 2023/07/18 12:0 a.m.•10 views

WordPress TablePress Plugin < 2.1.5 is vulnerable to Cross Site Scripting (XSS)

Software TablePress Type Plugin Vulnerable versions 2.1.5 Fixed in 2.1.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer TablePress PSID c2fdd4fab849 Credits Rafie Muhammad Patchstack Required privilege...

Patchstack•added 2023/07/18 12:0 a.m.•6 views

WordPress SEO Booster Plugin < 3.8.9 is vulnerable to Cross Site Scripting (XSS)

Software SEO Booster Type Plugin Vulnerable versions 3.8.9 Fixed in 3.8.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f88d0b59f7d6 Credits Rafie Muhammad Patchstack Required...

Patchstack•added 2023/07/18 12:0 a.m.•9 views

WordPress WordPress Google Translate Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Google Translate Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 51f43d98ec48 Credits Rafie Muhammad Patchstack...

Patchstack•added 2023/07/18 12:0 a.m.•3 views

WordPress ExIm Lite Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software ExIm Lite Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4614127c3514 Credits Rafie Muhammad Patchstack Required...

WordPress Better Messages – WCFM Integration Plugin < 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Better Messages – WCFM Integration Type Plugin Vulnerable versions 1.0.7 Fixed in 1.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7866237de730 Credits Rafie Muhammad...

Patchstack•added 2023/07/18 12:0 a.m.•8 views

WordPress Elation Theme <= 1.1.01 is vulnerable to Cross Site Scripting (XSS)

Software Elation Type Theme Vulnerable versions = 1.1.01 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 30b4c70f5ae1 Credits Rafie Muhammad Patchstack Required privile...

Patchstack•added 2023/07/18 12:0 a.m.•3 views

WordPress Gutenberg Blocks – ACF Blocks Suite Plugin < 2.6.10 is vulnerable to Cross Site Scripting (XSS)

Software Gutenberg Blocks – ACF Blocks Suite Type Plugin Vulnerable versions 2.6.10 Fixed in 2.6.10 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e64ba14a6800 Credits Rafie Muhamm...

Patchstack•added 2023/07/18 12:0 a.m.•3 views

WordPress Auto Featured Image (Auto Generated) Plugin <= 1.5.4 is vulnerable to Cross Site Scripting (XSS)

Software Auto Featured Image Auto Generated Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8cc402da0f7b Credits Rafie Muhamma...

6.4AI score

Patchstack•added 2023/07/18 12:0 a.m.•7 views

WordPress Blocks Bakery – Gutenberg Blocks Plugin <= 1.0.12 is vulnerable to Cross Site Scripting (XSS)

Software Blocks Bakery – Gutenberg Blocks Type Plugin Vulnerable versions = 1.0.12 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4de5fd74e476 Credits Rafie Muhammad...

Patchstack•added 2023/07/18 12:0 a.m.•6 views

WordPress WoowGallery – image gallery / content gallery / ecommerce gallery / social gallery / video gallery / album photo gallery Plugin < 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software WoowGallery – image gallery / content gallery / ecommerce gallery / social gallery / video gallery / album photo gallery Type Plugin Vulnerable versions 1.2.0 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS...