WordPress Compare Affiliated Products Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Compare Affiliated Products Type Plugin Vulnerable versions = 2.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9ce585df0af6 Credits Rafie Muhammad...

WordPress China Payments Plugin Plugin < 3.3.2 is vulnerable to Cross Site Scripting (XSS)

Software China Payments Plugin Type Plugin Vulnerable versions 3.3.2 Fixed in 3.3.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0f480c1a760a Credits Rafie Muhammad Patchstack...

WordPress Auto Post WooCommerce Products Plugin <= 2.1.60 is vulnerable to Cross Site Scripting (XSS)

Software Auto Post WooCommerce Products Type Plugin Vulnerable versions = 2.1.60 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 62a38305781e Credits Rafie Muhammad...

WordPress WritersBlok AI Content Generator for WordPress Plugin <= 1.3.19 is vulnerable to Cross Site Scripting (XSS)

Software WritersBlok AI Content Generator for WordPress Type Plugin Vulnerable versions = 1.3.19 Fixed in 1.3.20 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 20e67a63a397 Credits...

WordPress Atlas – Knowledge Base Plugin <= 6.0 is vulnerable to Cross Site Scripting (XSS)

Software Atlas – Knowledge Base Type Plugin Vulnerable versions = 6.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a66e5ae77863 Credits Rafie Muhammad Patchstack...

WordPress Cloud SAML SSO - Single Sign On Login Plugin < 1.0.14 is vulnerable to Cross Site Scripting (XSS)

Software Cloud SAML SSO - Single Sign On Login Type Plugin Vulnerable versions 1.0.14 Fixed in 1.0.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 69c4df44a084 Credits Rafie...

WordPress Bootitems Core Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Bootitems Core Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0fd9c2a3e107 Credits Rafie Muhammad Patchstack Required...

WordPress Multisite Robots.txt Manager Plugin <= 3.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Multisite Robots.txt Manager Type Plugin Vulnerable versions = 3.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6e315ff280c9 Credits Rafie Muhammad...

WordPress WP Smart Export (Free) Plugin <= 1.4.2.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Smart Export Free Type Plugin Vulnerable versions = 1.4.2.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 721b909648c5 Credits Rafie Muhammad Patchstack...

WordPress Pretty Grid – Social Feed Gallery Plugin Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Pretty Grid – Social Feed Gallery Plugin Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 26d1c071d144 Credits Rafie...

WordPress Opensea Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Opensea Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d4de12a3cf9 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Smart Admin Menu Filter Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Smart Admin Menu Filter Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6bdc701a1bda Credits Rafie Muhammad Patchstack...

WordPress South Pole: Climate action now Plugin <= 1.0.3.2 is vulnerable to Cross Site Scripting (XSS)

Software South Pole: Climate action now Type Plugin Vulnerable versions = 1.0.3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0b8c06df3bd4 Credits Rafie Muhammad...

WordPress Full Picture – Privacy-Focused Tag Manager & Cookie Notice Plugin < 5.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Full Picture – Privacy-Focused Tag Manager & Cookie Notice Type Plugin Vulnerable versions 5.0.0 Fixed in 5.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 665d64e793d9...

WordPress All in One Invite Codes Plugin < 1.1.11 is vulnerable to Cross Site Scripting (XSS)

Software All in One Invite Codes Type Plugin Vulnerable versions 1.1.11 Fixed in 1.1.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 070ddaecd3e9 Credits Rafie Muhammad Patchstac...

WordPress Accessibility Checker by Equalize Digital Plugin < 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Accessibility Checker by Equalize Digital Type Plugin Vulnerable versions 1.4.2 Fixed in 1.4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Equalize Digital PSID d2ab23b259fd Credits Rafie...

WordPress Modern Designs for Gravity Forms Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Modern Designs for Gravity Forms Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4662a347c105 Credits Rafie Muhammad...

WordPress Change Prices with Time for WooCommerce Plugin <= 1.9.1 is vulnerable to Cross Site Scripting (XSS)

Software Change Prices with Time for WooCommerce Type Plugin Vulnerable versions = 1.9.1 Fixed in 1.9.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3f4ba5b1e9c2 Credits Rafie...

WordPress WP School Calendar Plugin < 3.7.9 is vulnerable to Cross Site Scripting (XSS)

Software WP School Calendar Type Plugin Vulnerable versions 3.7.9 Fixed in 3.7.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2469db793f59 Credits Rafie Muhammad Patchstack...

WordPress RevivePress Plugin < 1.5.3 is vulnerable to Cross Site Scripting (XSS)

Software RevivePress Type Plugin Vulnerable versions 1.5.3 Fixed in 1.5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e19b58dc50bd Credits Rafie Muhammad Patchstack Required...