WordPress Campation PostOffice – Send Email Spam-free on HighSpeed without WP SMTP plugin – WordPress 6 ready! Plugin <= 1.5.7 is vulnerable to Cross Site Scripting (XSS)

Software Campation PostOffice – Send Email Spam-free on HighSpeed without WP SMTP plugin – WordPress 6 ready! Type Plugin Vulnerable versions = 1.5.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1...

WordPress Wp Default Sender Email by IT Pixelz Plugin <= 2.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Wp Default Sender Email by IT Pixelz Type Plugin Vulnerable versions = 2.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4cc42f5d1c0e Credits Rafie Muhamma...

WordPress TK SmugMug Slideshow Shortcode Plugin <= 1.7 is vulnerable to Cross Site Scripting (XSS)

Software TK SmugMug Slideshow Shortcode Type Plugin Vulnerable versions = 1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a44f02d512b6 Credits Rafie Muhammad...

WordPress WordPress Slider Plugin – Block Slider Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Slider Plugin – Block Slider Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a643ba97e0d5 Credits Rafie...

WordPress WP Travel Engine Plugin < 5.7.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Travel Engine Type Plugin Vulnerable versions 5.7.5 Fixed in 5.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 801294ac323a Credits Rafie Muhammad Patchstack Require...

WordPress Dreamfox Media Payment gateway per Product for Woocommerce Plugin < 3.2.7 is vulnerable to Cross Site Scripting (XSS)

Software Dreamfox Media Payment gateway per Product for Woocommerce Type Plugin Vulnerable versions 3.2.7 Fixed in 3.2.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f228b3d2c1e8...

WordPress TK Google Fonts GDPR Compliant Plugin < 2.2.11 is vulnerable to Cross Site Scripting (XSS)

Software TK Google Fonts GDPR Compliant Type Plugin Vulnerable versions 2.2.11 Fixed in 2.2.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 33cf3898b186 Credits Rafie Muhammad...

WordPress Free Shipping Label and Progress Bar for WooCommerce Plugin < 2.6.12 is vulnerable to Cross Site Scripting (XSS)

Software Free Shipping Label and Progress Bar for WooCommerce Type Plugin Vulnerable versions 2.6.12 Fixed in 2.6.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0ce90fbf8a11...

WordPress Kanzu Support Desk – WordPress Helpdesk Plugin Plugin <= 2.4.7 is vulnerable to Cross Site Scripting (XSS)

Software Kanzu Support Desk – WordPress Helpdesk Plugin Type Plugin Vulnerable versions = 2.4.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 331294a938f2 Credits Raf...

WordPress Themereps Helper Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Themereps Helper Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6799bde950c0 Credits Rafie Muhammad Patchstack Require...

WordPress CF7 WOW Styler Plugin < 1.5.4 is vulnerable to Cross Site Scripting (XSS)

Software CF7 WOW Styler Type Plugin Vulnerable versions 1.5.4 Fixed in 1.5.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Tobias PSID 838f3b70bdfc Credits Rafie Muhammad Patchstack Required privilege...

WordPress Awesome Social Icons Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Software Awesome Social Icons Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f6cd734fb895 Credits Rafie Muhammad Patchstack...

WordPress BookPress – For Book Authors Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)

Software BookPress – For Book Authors Type Plugin Vulnerable versions = 1.2.3 Fixed in 1.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 462e4cbac767 Credits Rafie Muhammad...

WordPress Advanced Accordion Gutenberg Block Plugin <= 4.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Advanced Accordion Gutenberg Block Type Plugin Vulnerable versions = 4.6.0 Fixed in 4.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 944f499ae786 Credits Rafie Muhamma...

WordPress Contact Form for WordPress- Cybrosys Plugin <= 5.0 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form for WordPress- Cybrosys Type Plugin Vulnerable versions = 5.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a418e2304432 Credits Rafie Muhammad...

WordPress ActiveCampaign Email Preference Center Plugin < 2.0.12 is vulnerable to Cross Site Scripting (XSS)

Software ActiveCampaign Email Preference Center Type Plugin Vulnerable versions 2.0.12 Fixed in 2.0.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0ae883cf0c33 Credits Rafie...

WordPress GravityStripe Subscription Manager Plugin <= 4.1.4 is vulnerable to Cross Site Scripting (XSS)

Software GravityStripe Subscription Manager Type Plugin Vulnerable versions = 4.1.4 Fixed in 4.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 757ed2a2a571 Credits Rafie Muhamma...

WordPress Focus on Reviews for WooCommerce Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Focus on Reviews for WooCommerce Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c31b5bf6f8ba Credits Rafie Muhammad...

WordPress WordPress Slideshow Gallery Plugin – Easy Slideshow Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Slideshow Gallery Plugin – Easy Slideshow Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID aecb415d5ce5 Credit...

WordPress Giveaways for woocommerce Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Giveaways for woocommerce Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a91a3036ab7d Credits Rafie Muhammad Patchstac...