WordPress Funnelforms Free Plugin < 3.3.8.5 is vulnerable to Cross Site Scripting (XSS)

Software Funnelforms Free Type Plugin Vulnerable versions 3.3.8.5 Fixed in 3.3.8.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8ac7f31605d7 Credits Rafie Muhammad Patchstack...

WordPress WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More Plugin < 3.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More Type Plugin Vulnerable versions 3.0.2 Fixed in 3.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership...

WordPress Everse Theme < 1.8.12 is vulnerable to Cross Site Scripting (XSS)

Software Everse Type Theme Vulnerable versions 1.8.12 Fixed in 1.8.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ac81191bc6b1 Credits Rafie Muhammad Patchstack Required privile...

WordPress FooGallery Plugin < 2.2.44 is vulnerable to Cross Site Scripting (XSS)

Software FooGallery Type Plugin Vulnerable versions 2.2.44 Fixed in 2.2.44 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8f1d9323b03f Credits Rafie Muhammad Patchstack Required...

WordPress Product Shipping Countdown Free Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Product Shipping Countdown Free Type Plugin Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5249592ccbb7 Credits Rafie Muhammad...

WordPress Mobile Pages Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Mobile Pages Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7dbee75ebab7 Credits Rafie Muhammad Patchstack Required...

WordPress Checkout with Cash App on EDD Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Checkout with Cash App on EDD Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6c72ff45c82b Credits Rafie Muhammad...

WordPress Guest Author Affiliate Plugin < 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Guest Author Affiliate Type Plugin Vulnerable versions 1.1.6 Fixed in 1.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5c442c4c1bd8 Credits Rafie Muhammad Patchstack...

WordPress LocalSEOMap Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software LocalSEOMap Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3215d319786f Credits Rafie Muhammad Patchstack Required...

WordPress Ajax Live Search Plugin For WordPress Plugin <= 2.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Ajax Live Search Plugin For WordPress Type Plugin Vulnerable versions = 2.3.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9b4d19a516fc Credits Rafie Muhamm...

WordPress WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule Plugin <= 2020.1.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule Type Plugin Vulnerable versions = 2020.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1...

WordPress Vit Website Reviews Plugin <= 2.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Vit Website Reviews Type Plugin Vulnerable versions = 2.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b5f10604cd46 Credits Rafie Muhammad Patchstack...

WordPress Disable Bloat for WordPress & WooCommerce Plugin < 3.2.9 is vulnerable to Cross Site Scripting (XSS)

Software Disable Bloat for WordPress & WooCommerce Type Plugin Vulnerable versions 3.2.9 Fixed in 3.2.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 57b213ea39f7 Credits Rafie...

WordPress Add Tiktok Pixel for Tiktok ads (+Woocommerce) Plugin < 1.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Add Tiktok Pixel for Tiktok ads +Woocommerce Type Plugin Vulnerable versions 1.2.7 Fixed in 1.2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 92194b39a569 Credits Rafie...

WordPress Premmerce WooCommerce Toolkit Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce WooCommerce Toolkit Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4559e551f8bb Credits Rafie Muhammad...

WordPress J Cart Upsell and Cross-sell for WooCommerce Plugin < 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Software J Cart Upsell and Cross-sell for WooCommerce Type Plugin Vulnerable versions 3.4.3 Fixed in 3.4.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4390725c1073 Credits Rafie...

WordPress BuddyDrive Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software BuddyDrive Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 756f9bf13ef8 Credits Rafie Muhammad Patchstack Required...

WordPress WooCommerce PayLate Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce PayLate Type Plugin Vulnerable versions = 1.5.1 Fixed in 1.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7223feb8df37 Credits Rafie Muhammad Patchstack...

WordPress Bootstrap Blog Theme < 10.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Bootstrap Blog Type Theme Vulnerable versions 10.2.3 Fixed in 10.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 930f23955c14 Credits Rafie Muhammad Patchstack Required...

WordPress Local Delivery Drivers for WooCommerce Plugin < 1.9.0 is vulnerable to Cross Site Scripting (XSS)

Software Local Delivery Drivers for WooCommerce Type Plugin Vulnerable versions 1.9.0 Fixed in 1.9.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43f3ba1f28bd Credits Rafie...