WordPress Royal Elementor Addons Plugin < 1.3.71 is vulnerable to Cross Site Scripting (XSS)

Software Royal Elementor Addons Type Plugin Vulnerable versions 1.3.71 Fixed in 1.3.71 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer WProyal PSID f12eb2449894 Credits Rafie Muhammad Patchstack Require...

WordPress Tickera Plugin < 3.4.8.4 is vulnerable to Cross Site Scripting (XSS)

Software Tickera Type Plugin Vulnerable versions 3.4.8.4 Fixed in 3.4.8.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 572bf731f4a5 Credits Rafie Muhammad Patchstack Required...

WordPress Streak CRM For Gmail For Contact Form 7 – WordPress Plugin Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Streak CRM For Gmail For Contact Form 7 – WordPress Plugin Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 00592a65a43d...

WordPress StickyWooCart – Ajax Add to Cart for WooCommerce Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software StickyWooCart – Ajax Add to Cart for WooCommerce Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c1a03a2b802b Credits...

WordPress Aiify Blocks - ChatGPT AI Content Editing and Generation Blocks Plugin <= 0.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Aiify Blocks - ChatGPT AI Content Editing and Generation Blocks Type Plugin Vulnerable versions = 0.0.8 Fixed in 0.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Add Twitter Pixel for Twitter ads Plugin < 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Add Twitter Pixel for Twitter ads Type Plugin Vulnerable versions 1.0.6 Fixed in 1.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c2595926ce4e Credits Rafie Muhammad...

WordPress Open User Map | Everybody can add locations Plugin < 1.3.17 is vulnerable to Cross Site Scripting (XSS)

Software Open User Map | Everybody can add locations Type Plugin Vulnerable versions 1.3.17 Fixed in 1.3.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9c1e6c504f0a Credits Rafi...

WordPress ChatPressAI - AI Supported Blogging and Reasearch Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software ChatPressAI - AI Supported Blogging and Reasearch Type Plugin Vulnerable versions = 1.0.0 Fixed in 1.0.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6f0b1a376b79 Credit...

WordPress Easy Settings for LearnDash Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Easy Settings for LearnDash Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a0b1740b059c Credits Rafie Muhammad...

WordPress Custom Tabs for Products WooCommerce Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Custom Tabs for Products WooCommerce Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e95b47afb3cf Credits Rafie Muhamma...

WordPress Pretty Opt In Lite – Content Locker for Lead Generation Plugin <= 1.3.13 is vulnerable to Cross Site Scripting (XSS)

Software Pretty Opt In Lite – Content Locker for Lead Generation Type Plugin Vulnerable versions = 1.3.13 Fixed in 1.3.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 550b1e29c12...

WordPress Integrate Google Drive Plugin < 1.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Integrate Google Drive Type Plugin Vulnerable versions 1.2.3 Fixed in 1.2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5711b66138ac Credits Rafie Muhammad Patchstack...

WordPress Product Layouts for Woocommerce ( Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table ) Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Product Layouts for Woocommerce Product Gallery, Product Showcase, Layout Design, Category Tabs, Product Slider, Product Grid, Product Table Type Plugin Vulnerable versions = 1.1.3 Fixed in 1.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch...

WordPress Get feedback from visitors – WP Feedback Suite Plugin Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Get feedback from visitors – WP Feedback Suite Plugin Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0ab5ef84106d...

WordPress APIExperts Square for WooCommerce Plugin <= 4.2.8 is vulnerable to Cross Site Scripting (XSS)

Software APIExperts Square for WooCommerce Type Plugin Vulnerable versions = 4.2.8 Fixed in 4.2.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 703ff9c637f4 Credits Rafie Muhammad...

WordPress DIVI Enhancer – DIVI Modules and Options Plugin <= 5.0.9 is vulnerable to Cross Site Scripting (XSS)

Software DIVI Enhancer – DIVI Modules and Options Type Plugin Vulnerable versions = 5.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c7324d4558dc Credits Rafie...

WordPress Blockspare Plugin < 2.6.5 is vulnerable to Cross Site Scripting (XSS)

Software Blockspare Type Plugin Vulnerable versions 2.6.5 Fixed in 2.6.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b339e093873a Credits Rafie Muhammad Patchstack Required...

WordPress WooCommerce upcoming Products Plugin <= 1.5.9.2 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce upcoming Products Type Plugin Vulnerable versions = 1.5.9.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 65707ce7d8a7 Credits Rafie Muhammad...

WordPress Mobile blocks Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Mobile blocks Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2579144786ce Credits Rafie Muhammad Patchstack Required...

WordPress GFireM Fields Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software GFireM Fields Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7b9137f7b7a5 Credits Rafie Muhammad Patchstack Required...