WordPress DIVI Enhancer – DIVI Modules and Options Plugin <= 5.0.9 is vulnerable to Cross Site Scripting (XSS)

Software DIVI Enhancer – DIVI Modules and Options Type Plugin Vulnerable versions = 5.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c7324d4558dc Credits Rafie...

WordPress Blockspare Plugin < 2.6.5 is vulnerable to Cross Site Scripting (XSS)

Software Blockspare Type Plugin Vulnerable versions 2.6.5 Fixed in 2.6.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b339e093873a Credits Rafie Muhammad Patchstack Required...

WordPress WooCommerce upcoming Products Plugin <= 1.5.9.2 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce upcoming Products Type Plugin Vulnerable versions = 1.5.9.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 65707ce7d8a7 Credits Rafie Muhammad...

WordPress Mobile blocks Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Mobile blocks Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2579144786ce Credits Rafie Muhammad Patchstack Required...

WordPress GFireM Fields Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software GFireM Fields Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7b9137f7b7a5 Credits Rafie Muhammad Patchstack Required...

WordPress Out of stock display for woocommerce Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Out of stock display for woocommerce Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c805e11af12f Credits Rafie Muhammad...

WordPress Cool Author Box - For Widget and Post Content Plugin <= 2.9.5 is vulnerable to Cross Site Scripting (XSS)

Software Cool Author Box - For Widget and Post Content Type Plugin Vulnerable versions = 2.9.5 Fixed in 2.9.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 965a0456c07b Credits...

WordPress Fullworks Slack Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Fullworks Slack Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4a8ad72a132f Credits Rafie Muhammad Patchstack Required...

WordPress Number Chat Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Number Chat Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8cd1dd5221d3 Credits Rafie Muhammad Patchstack Required...

WordPress My Chatbot Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software My Chatbot Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 3b3dd31edbbb Credits Rafie Muhammad Patchstack Required...

WordPress Temp Mail X Theme <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Temp Mail X Type Theme Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 010056c53463 Credits Rafie Muhammad Patchstack Required...

WordPress WP Frontend Profile Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Frontend Profile Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 90b628a038de Credits Rafie Muhammad Patchstack...

WordPress Print My Blog Plugin < 3.25.2 is vulnerable to Cross Site Scripting (XSS)

Software Print My Blog Type Plugin Vulnerable versions 3.25.2 Fixed in 3.25.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Michael Nelson PSID 0cee933b5bb7 Credits Rafie Muhammad Patchstack Required...

WordPress WP Dev Powers – Display Screen Dimensions to Admin Plugin Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Dev Powers – Display Screen Dimensions to Admin Plugin Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f38bbbbde0ec...

WordPress Google Sheet Connector for Easy Digital Downloads Plugin < 1.6.6 is vulnerable to Cross Site Scripting (XSS)

Software Google Sheet Connector for Easy Digital Downloads Type Plugin Vulnerable versions 1.6.6 Fixed in 1.6.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2b571060efb4 Credits...

WordPress WooCommerce Variation Swatches for Products Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Variation Swatches for Products Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2750602126f2 Credits Rafie...

WordPress Show Eventbrite Events – Event Feed for Eventbrite Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Show Eventbrite Events – Event Feed for Eventbrite Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 896a8e4be5fa Credi...

WordPress Panorama Viewer – 360 Degree Image + Video Viewer Plugin < 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Panorama Viewer – 360 Degree Image + Video Viewer Type Plugin Vulnerable versions 1.0.9 Fixed in 1.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 90a4b4196c3c Credits...

WordPress TK Event Weather Plugin <= 1.6.6 is vulnerable to Cross Site Scripting (XSS)

Software TK Event Weather Type Plugin Vulnerable versions = 1.6.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e823c2c9f8bf Credits Rafie Muhammad Patchstack Require...

WordPress VidSEO | WordPress Video SEO embedder with transcripts (Youtube & Vimeo) Plugin < 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Software VidSEO | WordPress Video SEO embedder with transcripts Youtube & Vimeo Type Plugin Vulnerable versions 1.2.6 Fixed in 1.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...