WordPress Five-Star Ratings Shortcode Plugin < 1.2.48 is vulnerable to Cross Site Scripting (XSS)

Software Five-Star Ratings Shortcode Type Plugin Vulnerable versions 1.2.48 Fixed in 1.2.48 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ed6e5abc9527 Credits Rafie Muhammad...

WordPress Advanced WP Table Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Advanced WP Table Type Plugin Vulnerable versions = 1.3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1f1753853ab4 Credits Rafie Muhammad Patchstack Requir...

WordPress Script Planner Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Script Planner Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b3b13fcbcc38 Credits Rafie Muhammad Patchstack Required...

WordPress Travel Agency Booking Theme <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Travel Agency Booking Type Theme Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a2ab945a39ee Credits Rafie Muhammad Patchstack...

WordPress ClinicalWP Core Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software ClinicalWP Core Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 39cede9b6e05 Credits Rafie Muhammad Patchstack Required...

WordPress Product Delivery Date Plugin < 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Software Product Delivery Date Type Plugin Vulnerable versions 1.1.5 Fixed in 1.1.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 01a83af05e0b Credits Rafie Muhammad Patchstack...

WordPress 3D viewer – Embed 3D Models Plugin < 1.3.4 is vulnerable to Cross Site Scripting (XSS)

Software 3D viewer – Embed 3D Models Type Plugin Vulnerable versions 1.3.4 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42920a97a20a Credits Rafie Muhammad...

WordPress WooCommerce Dynamic Pricing and Discount Rules Plugin <= 2.3.3 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Dynamic Pricing and Discount Rules Type Plugin Vulnerable versions = 2.3.3 Fixed in 2.3.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 506694d0fc2e Credits...

WordPress BuddyForms EasyPin Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms EasyPin Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID adb78d8da60d Credits Rafie Muhammad Patchstack...

WordPress W3SCloud Contact Form 7 to Zoho CRM Plugin <= 3.0 is vulnerable to Cross Site Scripting (XSS)

Software W3SCloud Contact Form 7 to Zoho CRM Type Plugin Vulnerable versions = 3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43a2cdb360ec Credits Rafie Muhammad...

WordPress Top News – Best News Plugin for WordPress Plugin < 2.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Top News – Best News Plugin for WordPress Type Plugin Vulnerable versions 2.3.7 Fixed in 2.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c525dae0bf4f Credits Rafie...

WordPress Staggs Product Configurator for WooCommerce Plugin < 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Staggs Product Configurator for WooCommerce Type Plugin Vulnerable versions 1.4.2 Fixed in 1.4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 63876648fcb8 Credits Rafie...

WordPress OliveWP Companion Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software OliveWP Companion Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7e6ce7e1f348 Credits Rafie Muhammad Patchstack Requir...

WordPress Simplelender Plugin <= 1.3.23 is vulnerable to Cross Site Scripting (XSS)

Software Simplelender Type Plugin Vulnerable versions = 1.3.23 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 56ad2fad8624 Credits Rafie Muhammad Patchstack Required...

WordPress Chat Button- Leads and Order over Chat Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Chat Button- Leads and Order over Chat Type Plugin Vulnerable versions = 1.6.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d0fb978d5e8 Credits Rafie...

WordPress AutoSave Net Plugin <= 1.3.4 is vulnerable to Cross Site Scripting (XSS)

Software AutoSave Net Type Plugin Vulnerable versions = 1.3.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3520eb9add2b Credits Rafie Muhammad Patchstack Required...

WordPress AI Mojo – GPT-3 Playground for WordPress Plugin < 0.9.0 is vulnerable to Cross Site Scripting (XSS)

Software AI Mojo – GPT-3 Playground for WordPress Type Plugin Vulnerable versions 0.9.0 Fixed in 0.9.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5642cc65e7b6 Credits Rafie...

WordPress Contact Form 7 Summary and Print Plugin <= 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form 7 Summary and Print Type Plugin Vulnerable versions = 1.2.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0589421717a6 Credits Rafie Muhammad...

WordPress Memory Meter Plugin < 1.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Memory Meter Type Plugin Vulnerable versions 1.3.1 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID be382e4f8eb6 Credits Rafie Muhammad Patchstack Required...

WordPress Interactive Geo Maps Plugin < 1.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Interactive Geo Maps Type Plugin Vulnerable versions 1.6.1 Fixed in 1.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9b4f22117bce Credits Rafie Muhammad Patchstack...