WordPress YouTube Easy Embed (Wall/Rail) Plugin < 1.2.3 is vulnerable to Cross Site Scripting (XSS)

Software YouTube Easy Embed Wall/Rail Type Plugin Vulnerable versions 1.2.3 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b0d95fa5dab1 Credits Rafie Muhammad...

WordPress Fullworks Firewall Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Fullworks Firewall Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0a683f965888 Credits Rafie Muhammad Patchstack...

WordPress Premmerce Plugin <= 1.3.17 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce Type Plugin Vulnerable versions = 1.3.17 Fixed in 1.3.18 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID 278ff9c96050 Credits Rafie Muhammad Patchstack Required privile...

WordPress AppExperts – WordPress to Mobile App – WooCommerce to iOs and Android Apps Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software AppExperts – WordPress to Mobile App – WooCommerce to iOs and Android Apps Type Plugin Vulnerable versions = 1.4.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership...

WordPress Featured Images in RSS for Mailchimp & More Plugin < 1.6.2 is vulnerable to Cross Site Scripting (XSS)

Software Featured Images in RSS for Mailchimp & More Type Plugin Vulnerable versions 1.6.2 Fixed in 1.6.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 51694d6d4bc7 Credits Rafie...

WordPress Elementor Stripe Payment Plugin < 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Stripe Payment Type Plugin Vulnerable versions 1.2.2 Fixed in 1.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 457af1099132 Credits Rafie Muhammad Patchstack...

WordPress Mass Pages/Posts Creator Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Mass Pages/Posts Creator Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e259a062e790 Credits Rafie Muhammad Patchsta...

WordPress WordPress SEO Audit Plugin – WP Site Auditor Plugin < 1.2.9 is vulnerable to Cross Site Scripting (XSS)

Software WordPress SEO Audit Plugin – WP Site Auditor Type Plugin Vulnerable versions 1.2.9 Fixed in 1.2.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5c8c57e7a35f Credits Rafie...

WordPress Doubly - Cross Domain Copy Paste for WordPress Plugin < 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Doubly - Cross Domain Copy Paste for WordPress Type Plugin Vulnerable versions 1.0 Fixed in 1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dd92367e6b06 Credits Rafie...

WordPress Auto Keyword Backlink Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)

Software Auto Keyword Backlink Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 80db1aaebcb5 Credits Rafie Muhammad Patchstack...

WordPress WP Contact Slider Plugin <= 2.4.8 is vulnerable to Cross Site Scripting (XSS)

Software WP Contact Slider Type Plugin Vulnerable versions = 2.4.8 Fixed in 2.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7425e4a52284 Credits Rafie Muhammad Patchstack...

WordPress Salzburg Blog Theme <= 1.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Salzburg Blog Type Theme Vulnerable versions = 1.0.11 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 70c5d5b562e1 Credits Rafie Muhammad Patchstack Required...

WordPress InternalLink Audit Plugin <= 0.1.0 is vulnerable to Cross Site Scripting (XSS)

Software InternalLink Audit Type Plugin Vulnerable versions = 0.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 61b943d2eda3 Credits Rafie Muhammad Patchstack...

WordPress Product Size Charts Plugin for WooCommerce Plugin <= 2.4.3 is vulnerable to Cross Site Scripting (XSS)

Software Product Size Charts Plugin for WooCommerce Type Plugin Vulnerable versions = 2.4.3 Fixed in 2.4.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 148533d1f7c7 Credits Raf...

WordPress Weight Based Shipping For WooCommerce Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Weight Based Shipping For WooCommerce Type Plugin Vulnerable versions = 1.3.2 Fixed in 1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 73b63a2ddc7e Credits Rafie Muhamm...

WordPress Social Kit Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Social Kit Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 85da0d51a783 Credits Rafie Muhammad Patchstack Required...

WordPress Eighteen tags Theme <= 3.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Eighteen tags Type Theme Vulnerable versions = 3.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1707282293cb Credits Rafie Muhammad Patchstack Required...

WordPress Distancr – Price by Location for WooCommerce Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS)

Software Distancr – Price by Location for WooCommerce Type Plugin Vulnerable versions = 1.1.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fc09f6eee010 Credits Rafie...

WordPress Post Snippets Plugin < 4.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Post Snippets Type Plugin Vulnerable versions 4.0.4 Fixed in 4.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e4d64cbe7635 Credits Rafie Muhammad Patchstack Required...

WordPress Automizy Gravity Forms Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Automizy Gravity Forms Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b6399e0d3ef8 Credits Rafie Muhammad Patchstack...