WordPress Product Tables for WooCommerce: Quickster Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Product Tables for WooCommerce: Quickster Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 77feadf1ad67 Credits Rafie...

WordPress Campation PostOffice – Send Email Spam-free on HighSpeed without WP SMTP plugin – WordPress 6 ready! Plugin <= 1.5.7 is vulnerable to Cross Site Scripting (XSS)

Software Campation PostOffice – Send Email Spam-free on HighSpeed without WP SMTP plugin – WordPress 6 ready! Type Plugin Vulnerable versions = 1.5.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1...

WordPress SheetPress – Manage WordPress Meta data with Google Sheets Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software SheetPress – Manage WordPress Meta data with Google Sheets Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4116f6cb7166...

WordPress Video Reviews / Video Widget Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Video Reviews / Video Widget Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7dac09181d24 Credits Rafie Muhammad...

WordPress Product Image Watermark for Woo Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Product Image Watermark for Woo Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 75275bbab7e3 Credits Rafie Muhammad...

WordPress Bootstrap Coach Theme < 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Bootstrap Coach Type Theme Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 56159c2dd7f6 Credits Rafie Muhammad Patchstack Required...

WordPress Live Scores for SportsPress Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)

Software Live Scores for SportsPress Type Plugin Vulnerable versions = 1.9.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1a8a87c6e703 Credits Rafie Muhammad...

WordPress WP Adminify Plugin < 3.1.4 is vulnerable to Cross Site Scripting (XSS)

Software WP Adminify Type Plugin Vulnerable versions 3.1.4 Fixed in 3.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0e3546694fbf Credits Rafie Muhammad Patchstack Required...

WordPress Goal Tracker - Custom Event Tracking for GA4 Plugin < 1.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Goal Tracker - Custom Event Tracking for GA4 Type Plugin Vulnerable versions 1.0.11 Fixed in 1.0.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e97011f95aa7 Credits Raf...

WordPress TK Google Fonts GDPR Compliant Plugin < 2.2.11 is vulnerable to Cross Site Scripting (XSS)

Software TK Google Fonts GDPR Compliant Type Plugin Vulnerable versions 2.2.11 Fixed in 2.2.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 33cf3898b186 Credits Rafie Muhammad...

WordPress Internal Comments Plugin <= 1.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Internal Comments Type Plugin Vulnerable versions = 1.2.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4ebc42631ae8 Credits Rafie Muhammad Patchstack Requir...

WordPress Magic Login API Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Magic Login API Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6d2c95bc7776 Credits Rafie Muhammad Patchstack Required...

WordPress WP Travel Engine Plugin < 5.7.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Travel Engine Type Plugin Vulnerable versions 5.7.5 Fixed in 5.7.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 801294ac323a Credits Rafie Muhammad Patchstack Require...

WordPress Bulk Edit and Create User Profiles – WP Sheet Editor Plugin < 1.5.26 is vulnerable to Cross Site Scripting (XSS)

Software Bulk Edit and Create User Profiles – WP Sheet Editor Type Plugin Vulnerable versions 1.5.26 Fixed in 1.5.26 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8d00b38962a5...

WordPress Superfast Mailgun for the Newsletter plugin Plugin < 1.2.4 is vulnerable to Cross Site Scripting (XSS)

Software Superfast Mailgun for the Newsletter plugin Type Plugin Vulnerable versions 1.2.4 Fixed in 1.2.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 05f4a612540e Credits Rafie...

WordPress Kanzu Support Desk – WordPress Helpdesk Plugin Plugin <= 2.4.7 is vulnerable to Cross Site Scripting (XSS)

Software Kanzu Support Desk – WordPress Helpdesk Plugin Type Plugin Vulnerable versions = 2.4.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 331294a938f2 Credits Raf...

WordPress Aquarella Lite Theme <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Aquarella Lite Type Theme Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b3af0c04aaa1 Credits Rafie Muhammad Patchstack Required...

WordPress Internal Link Flow & Topical Authority & Topical Map Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Internal Link Flow & Topical Authority & Topical Map Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 294360c372a8 Credi...

WordPress Cart tracking for WooCommerce Plugin < 1.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Cart tracking for WooCommerce Type Plugin Vulnerable versions 1.0.11 Fixed in 1.0.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dcb0e41e383c Credits Rafie Muhammad...

WordPress Pets Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Pets Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID de9a99f2fff5 Credits Rafie Muhammad Patchstack Required privilege...