WordPress Easy Schema - Structured Data & Rich Snippets Plugin <= 2.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Easy Schema - Structured Data & Rich Snippets Type Plugin Vulnerable versions = 2.2.2 Fixed in 2.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d25737c70298 Credits...

WordPress Netforum Member Directory Plugin <= 1.12 is vulnerable to Cross Site Scripting (XSS)

Software Netforum Member Directory Type Plugin Vulnerable versions = 1.12 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e544beed4a6a Credits Rafie Muhammad Patchstack...

WordPress Auto SEO META keywords (META tags keywords) optimization + WooCommerce Plugin < 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Auto SEO META keywords META tags keywords optimization + WooCommerce Type Plugin Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Starcat Review – WordPress Reviews & Rating Plugin with Woocommerce Integration Plugin <= 0.8 is vulnerable to Cross Site Scripting (XSS)

Software Starcat Review – WordPress Reviews & Rating Plugin with Woocommerce Integration Type Plugin Vulnerable versions = 0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownershi...

WordPress Unakit Theme <= 1.2.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Unakit Type Theme Vulnerable versions = 1.2.4.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b16b88fbd2b0 Credits Rafie Muhammad Patchstack Required privile...

WordPress WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking Plugin <= 3.7.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking Type Plugin Vulnerable versions = 3.7.0 Fixed in 3.7.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim...

WordPress Ai Robot Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Ai Robot Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ec1756a28842 Credits Rafie Muhammad Patchstack Required...

WordPress Livemesh SiteOrigin Widgets Plugin < 3.3 is vulnerable to Cross Site Scripting (XSS)

Software Livemesh SiteOrigin Widgets Type Plugin Vulnerable versions 3.3 Fixed in 3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a6f49c9df0d3 Credits Rafie Muhammad Patchstack...

WordPress Sticky add to cart for Woo Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Sticky add to cart for Woo Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 982520550df9 Credits Rafie Muhammad Patchsta...

WordPress WP-Cron Status Checker Plugin < 1.2.5 is vulnerable to Cross Site Scripting (XSS)

Software WP-Cron Status Checker Type Plugin Vulnerable versions 1.2.5 Fixed in 1.2.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e78f192bc072 Credits Rafie Muhammad Patchstack...

WordPress BotMate - Automate or Sync Your Sites With No Code Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software BotMate - Automate or Sync Your Sites With No Code Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8348fa6fe814 Credits...

WordPress WordPress Coupon Plugin for Bloggers and Marketers – WP Offers Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Coupon Plugin for Bloggers and Marketers – WP Offers Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress WP-HR GDPR: GDPR Tools for Human Resources on WordPress Plugin <= 0.9 is vulnerable to Cross Site Scripting (XSS)

Software WP-HR GDPR: GDPR Tools for Human Resources on WordPress Type Plugin Vulnerable versions = 0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID db7becb317eb...

WordPress Lightbox – EverlightBox Gallery Plugin < 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Lightbox – EverlightBox Gallery Type Plugin Vulnerable versions 1.2.0 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a0f3c1713753 Credits Rafie Muhammad...

WordPress Page Builder Sandwich – Front-End Page Builder Plugin <= 5.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Page Builder Sandwich – Front-End Page Builder Type Plugin Vulnerable versions = 5.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 69959237fa11 Credits Raf...

WordPress Delivery Drivers for Vendors Plugin < 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Delivery Drivers for Vendors Type Plugin Vulnerable versions 1.1.1 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a07fd1f98684 Credits Rafie Muhammad...

WordPress Italian VAT Kit for WooCommerce Plugin <= 1.3.34 is vulnerable to Cross Site Scripting (XSS)

Software Italian VAT Kit for WooCommerce Type Plugin Vulnerable versions = 1.3.34 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 97bced365725 Credits Rafie Muhammad...

WordPress Cryptocurrency Portfolio Tracker Plugin <= 0.0.17 is vulnerable to Cross Site Scripting (XSS)

Software Cryptocurrency Portfolio Tracker Type Plugin Vulnerable versions = 0.0.17 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 21f6f43dfd2a Credits Rafie Muhammad...

WordPress Media Library File Download Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)

Software Media Library File Download Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7eae9dc27a23 Credits Rafie Muhammad Patchstac...

WordPress WP Sierra Theme <= 1.0.49 is vulnerable to Cross Site Scripting (XSS)

Software WP Sierra Type Theme Vulnerable versions = 1.0.49 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 34a487172e97 Credits Rafie Muhammad Patchstack Required...