WordPress Remove Duplicate Posts Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Remove Duplicate Posts Type Plugin Vulnerable versions = 1.2.1 Fixed in 1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 06b3bc1848f2 Credits Rafie Muhammad Patchstack...

WordPress Video Analytics for Cloudflare Stream Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Video Analytics for Cloudflare Stream Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID ca3447e66eaa Credits Rafie Muhammad...

WordPress WP to Twitter Plugin <= 3.2.19 is vulnerable to Cross Site Scripting (XSS)

Software WP to Twitter Type Plugin Vulnerable versions = 3.2.19 Fixed in 3.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2c99a8d109d0 Credits Rafie Muhammad Patchstack Required...

WordPress External Media Upload Plugin <= 0.3 is vulnerable to Cross Site Scripting (XSS)

Software External Media Upload Type Plugin Vulnerable versions = 0.3 Fixed in 0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 69ec8e1f8b63 Credits Rafie Muhammad Patchstack Required...

WordPress Content Blocks Builder Plugin <= 2.3.16 is vulnerable to Cross Site Scripting (XSS)

Software Content Blocks Builder Type Plugin Vulnerable versions = 2.3.16 Fixed in 2.3.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b2bb9ceb8c06 Credits Rafie Muhammad Patchstack...

WordPress SV Proven Expert Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Proven Expert Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 62003655836a Credits Rafie Muhammad Patchstack Require...

WordPress Information for help Plugin <= 0.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Information for help Type Plugin Vulnerable versions = 0.0.2 Fixed in 0.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4d502a82a628 Credits Rafie Muhammad Patchstack...

WordPress Menu Item Scheduler Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Menu Item Scheduler Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 85b80b505402 Credits Rafie Muhammad Patchstack Required...

WordPress Image Carousel For Divi Plugin <= 1.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Image Carousel For Divi Type Plugin Vulnerable versions = 1.6.0 Fixed in 1.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3f302e5b9b05 Credits Rafie Muhammad Patchstack...

WordPress Server Info Plugin <= 2.5.3 is vulnerable to Cross Site Scripting (XSS)

Software Server Info Type Plugin Vulnerable versions = 2.5.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 548d1464357e Credits Rafie Muhammad Patchstack Required privile...

WordPress DEV.LAND Plugin <= 3.0.4 is vulnerable to Cross Site Scripting (XSS)

Software DEV.LAND Type Plugin Vulnerable versions = 3.0.4 Fixed in 3.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID ec2699cc297c Credits Rafie Muhammad Patchstack Required privileg...

WordPress TI WooCommerce Wishlist Plugin <= 1.6.2 is vulnerable to Cross Site Scripting (XSS)

Software TI WooCommerce Wishlist Type Plugin Vulnerable versions = 1.6.2 Fixed in 1.7.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 25a4fb6be4e0 Credits Rafie Muhammad Patchstack...

WordPress WordPress Easy Call Now Button by elixirs.io Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Easy Call Now Button by elixirs.io Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 566a7ec248a1 Credits Rafie...

WordPress SV Tracking Manager Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Tracking Manager Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9607e9d7b8e8 Credits Rafie Muhammad Patchstack...

WordPress Event Tickets Plugin <= 5.5.11.1 is vulnerable to Cross Site Scripting (XSS)

Software Event Tickets Type Plugin Vulnerable versions = 5.5.11.1 Fixed in 5.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Liquid Web / StellarWP PSID b526dab2f64a Credits Rafie Muhammad Patchstack...

WordPress Market Exporter Plugin <= 2.0.18 is vulnerable to Cross Site Scripting (XSS)

Software Market Exporter Type Plugin Vulnerable versions = 2.0.18 Fixed in 2.0.19 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8f5b74a99cbb Credits Rafie Muhammad Patchstack Required...

WordPress Import Holded for WooCommerce or Easy Digital Downloads Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Import Holded for WooCommerce or Easy Digital Downloads Type Plugin Vulnerable versions = 1.3 Fixed in 2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b0d5eca11d7a Credits...

WordPress Redirect 404 Error Page to Homepage or Custom Page with Logs Plugin <= 1.7.8 is vulnerable to Cross Site Scripting (XSS)

Software Redirect 404 Error Page to Homepage or Custom Page with Logs Type Plugin Vulnerable versions = 1.7.8 Fixed in 1.8.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 88691e62e151...

WordPress DokoBuilder : DIY Product Bundle for WooCommerce Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software DokoBuilder : DIY Product Bundle for WooCommerce Type Plugin Vulnerable versions = 1.0 Fixed in 1.0.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9b2f125227ce Credits Rafie...

WordPress Disable Emojis & Disable Embeds for WordPress Performance & SpeedUp Plugin <= 1.4.5 is vulnerable to Cross Site Scripting (XSS)

Software Disable Emojis & Disable Embeds for WordPress Performance & SpeedUp Type Plugin Vulnerable versions = 1.4.5 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...