WordPress XT Points & Rewards for WooCommerce Plugin <= 1.6.5 is vulnerable to Cross Site Scripting (XSS)

Software XT Points & Rewards for WooCommerce Type Plugin Vulnerable versions = 1.6.5 Fixed in 1.6.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c1d2e216b1c0 Credits Rafie Muhamm...

WordPress Goon – Speed Up Your WordPress Site Plugin <= 1.2.9.1 is vulnerable to Cross Site Scripting (XSS)

Software Goon – Speed Up Your WordPress Site Type Plugin Vulnerable versions = 1.2.9.1 Fixed in 1.2.9.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 989eea38eccd Credits Rafie...

WordPress Choice Payment Gateway for WooCommerce Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Choice Payment Gateway for WooCommerce Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fa9893c69c54 Credits Rafie...

WordPress Full Picture – Privacy-Focused Tag Manager & Cookie Notice Plugin < 5.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Full Picture – Privacy-Focused Tag Manager & Cookie Notice Type Plugin Vulnerable versions 5.0.0 Fixed in 5.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 665d64e793d9...

WordPress All in One Invite Codes Plugin < 1.1.11 is vulnerable to Cross Site Scripting (XSS)

Software All in One Invite Codes Type Plugin Vulnerable versions 1.1.11 Fixed in 1.1.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 070ddaecd3e9 Credits Rafie Muhammad Patchstac...

WordPress Age Verification Screen for WooCommerce Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Age Verification Screen for WooCommerce Type Plugin Vulnerable versions = 1.0.2 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 61eb9724d242 Credits Rafie...

WordPress Accessibility Checker by Equalize Digital Plugin < 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Accessibility Checker by Equalize Digital Type Plugin Vulnerable versions 1.4.2 Fixed in 1.4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Equalize Digital PSID d2ab23b259fd Credits Rafie...

WordPress MailChimp Manager Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software MailChimp Manager Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 518006416c23 Credits Rafie Muhammad Patchstack Requir...

WordPress Relax Spa Theme < 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Relax Spa Type Theme Vulnerable versions 1.1.1 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b6d96cda06db Credits Rafie Muhammad Patchstack Required...

WordPress Sprout Clients Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS)

Software Sprout Clients Type Plugin Vulnerable versions = 3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 68806fbebbf5 Credits Rafie Muhammad Patchstack Required...

WordPress StreamWeasels YouTube Integration Plugin < 1.1.4 is vulnerable to Cross Site Scripting (XSS)

Software StreamWeasels YouTube Integration Type Plugin Vulnerable versions 1.1.4 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4670ce2ab82b Credits Rafie Muhammad...

WordPress VO Store Locator – WP Store Locator Plugin Plugin <= 3.3.0 is vulnerable to Cross Site Scripting (XSS)

Software VO Store Locator – WP Store Locator Plugin Type Plugin Vulnerable versions = 3.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 48d9000ab0fb Credits Rafie...

WordPress Freemage Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Freemage Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 11465d247b6e Credits Rafie Muhammad Patchstack Required privileg...

WordPress MoceanAPI Order SMS Notification for WooCommerce Plugin <= 1.4.12 is vulnerable to Cross Site Scripting (XSS)

Software MoceanAPI Order SMS Notification for WooCommerce Type Plugin Vulnerable versions = 1.4.12 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f1276d575ff0 Credits...

WordPress WP How to - WordPress Tutorial Videos Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WP How to - WordPress Tutorial Videos Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9a7c3c08eb69 Credits Rafie Muhamm...

WordPress Modern Designs for Gravity Forms Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Modern Designs for Gravity Forms Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4662a347c105 Credits Rafie Muhammad...

WordPress Change Prices with Time for WooCommerce Plugin <= 1.9.1 is vulnerable to Cross Site Scripting (XSS)

Software Change Prices with Time for WooCommerce Type Plugin Vulnerable versions = 1.9.1 Fixed in 1.9.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3f4ba5b1e9c2 Credits Rafie...

WordPress Advanced Exchange Rates for WooCommerce Multilingual Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Exchange Rates for WooCommerce Multilingual Type Plugin Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ac20ba53363a Credi...

WordPress Extreme Blocks Plugin <= 0.8.1 is vulnerable to Cross Site Scripting (XSS)

Software Extreme Blocks Type Plugin Vulnerable versions = 0.8.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 084f10a70314 Credits Rafie Muhammad Patchstack Required...

WordPress WP School Calendar Plugin < 3.7.9 is vulnerable to Cross Site Scripting (XSS)

Software WP School Calendar Type Plugin Vulnerable versions 3.7.9 Fixed in 3.7.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2469db793f59 Credits Rafie Muhammad Patchstack...