WordPress Import Holded for WooCommerce or Easy Digital Downloads Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Import Holded for WooCommerce or Easy Digital Downloads Type Plugin Vulnerable versions = 1.3 Fixed in 2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b0d5eca11d7a Credits...

WordPress External Media Upload Plugin <= 0.3 is vulnerable to Cross Site Scripting (XSS)

Software External Media Upload Type Plugin Vulnerable versions = 0.3 Fixed in 0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 69ec8e1f8b63 Credits Rafie Muhammad Patchstack Required...

WordPress Content Blocks Builder Plugin <= 2.3.16 is vulnerable to Cross Site Scripting (XSS)

Software Content Blocks Builder Type Plugin Vulnerable versions = 2.3.16 Fixed in 2.3.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b2bb9ceb8c06 Credits Rafie Muhammad Patchstack...

WordPress SV Proven Expert Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)

Software SV Proven Expert Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 62003655836a Credits Rafie Muhammad Patchstack Require...

WordPress Information for help Plugin <= 0.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Information for help Type Plugin Vulnerable versions = 0.0.2 Fixed in 0.0.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4d502a82a628 Credits Rafie Muhammad Patchstack...

WordPress Order Redirects for WooCommerce Plugin <= 0.8 is vulnerable to Cross Site Scripting (XSS)

Software Order Redirects for WooCommerce Type Plugin Vulnerable versions = 0.8 Fixed in 0.8.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b3548bc8e929 Credits Rafie Muhammad...

WordPress Spanish Market Enhancements for WooCommerce Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Spanish Market Enhancements for WooCommerce Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2f56f70008a2 Credits Rafie...

WordPress WordPress WooCommerce Sync for Google Sheet Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress WooCommerce Sync for Google Sheet Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 80c24732fce2 Credits Rafie Muhamm...

WordPress Gift Message for WooCommerce Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS)

Software Gift Message for WooCommerce Type Plugin Vulnerable versions = 1.7.4 Fixed in 1.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3d29cd822d00 Credits Rafie Muhammad Patchsta...

WordPress Bing Custom Search for WordPress Plugin <= 2.4 is vulnerable to Cross Site Scripting (XSS)

Software Bing Custom Search for WordPress Type Plugin Vulnerable versions = 2.4 Fixed in 2.6.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 487fa482beb5 Credits Rafie Muhammad...

WordPress WP Scrive by Webbstart Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Scrive by Webbstart Type Plugin Vulnerable versions = 1.2.3 Fixed in 1.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 05d2a99ee0f5 Credits Rafie Muhammad Patchstack...

WordPress Embed Video Thumbnail Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Embed Video Thumbnail Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8566e0ea18cd Credits Rafie Muhammad Patchstack...

WordPress WP VR Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WP VR Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer WPFunnels Team PSID de1111c82f8a Credits Rafie Muhammad Patchstack Required privilege...

WordPress Notification Plugin <= 6.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Notification Type Plugin Vulnerable versions = 6.0.4 Fixed in 6.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 58552eb21f66 Credits Rafie Muhammad Patchstack Required...

WordPress BuddyForms Attach Post with Group Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Attach Post with Group Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9d4312fdd8bd Credits Rafie Muhammad...

WordPress Image Photo Gallery Final Tiles Grid Plugin <= 3.5.6 is vulnerable to Cross Site Scripting (XSS)

Software Image Photo Gallery Final Tiles Grid Type Plugin Vulnerable versions = 3.5.6 Fixed in 3.5.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 37480a127ac6 Credits Rafie Muhammad...

WordPress BuddyPress Groups Integration for WooCommerce Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software BuddyPress Groups Integration for WooCommerce Type Plugin Vulnerable versions = 1.0.4 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 74e53a4d5f1c Credits Rafie...

WordPress WP AutoTerms: Privacy Policy Generator (GDPR & CCPA), Terms & Conditions Generator, Cookie Notice Banner Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Software WP AutoTerms: Privacy Policy Generator GDPR & CCPA, Terms & Conditions Generator, Cookie Notice Banner Type Plugin Vulnerable versions = 1.8.2 Fixed in 2.0.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1...

WordPress BuddyForms Ultimate Member Plugin <= 1.3.7 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms Ultimate Member Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 72707a9ff4f8 Credits Rafie Muhammad Patchstack...

WordPress Quiz Cat Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Quiz Cat Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 067050a23a59 Credits Rafie Muhammad Patchstack Required privileg...