WordPress TablePress Plugin < 2.1.5 is vulnerable to Cross Site Scripting (XSS)

Software TablePress Type Plugin Vulnerable versions 2.1.5 Fixed in 2.1.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer TablePress PSID c2fdd4fab849 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Global Income Stats from Freemius Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Global Income Stats from Freemius Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b5a0d8241771 Credits Rafie Muhammad...

WordPress Better Messages – WCFM Integration Plugin < 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Better Messages – WCFM Integration Type Plugin Vulnerable versions 1.0.7 Fixed in 1.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7866237de730 Credits Rafie Muhammad...

WordPress DIVI Section Enhancer Plugin <= 2.7.6 is vulnerable to Cross Site Scripting (XSS)

Software DIVI Section Enhancer Type Plugin Vulnerable versions = 2.7.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0cbb951bbfa4 Credits Rafie Muhammad Patchstack...

WordPress Page Builder Sandwich – Front-End Page Builder Plugin <= 5.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Page Builder Sandwich – Front-End Page Builder Type Plugin Vulnerable versions = 5.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 69959237fa11 Credits Raf...

WordPress WooRocks Magic Content Plugin <= 1.0.17 is vulnerable to Cross Site Scripting (XSS)

Software WooRocks Magic Content Type Plugin Vulnerable versions = 1.0.17 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1fd587f00a62 Credits Rafie Muhammad Patchstack...

WordPress Super Video Player Plugin < 1.6.13 is vulnerable to Cross Site Scripting (XSS)

Software Super Video Player Type Plugin Vulnerable versions 1.6.13 Fixed in 1.6.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a2d8b09b91b6 Credits Rafie Muhammad Patchstack...

WordPress WP Sierra Theme <= 1.0.49 is vulnerable to Cross Site Scripting (XSS)

Software WP Sierra Type Theme Vulnerable versions = 1.0.49 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 34a487172e97 Credits Rafie Muhammad Patchstack Required...

WordPress WP Tools Divi Product Carousel Plugin < 1.5.1 is vulnerable to Cross Site Scripting (XSS)

Software WP Tools Divi Product Carousel Type Plugin Vulnerable versions 1.5.1 Fixed in 1.5.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42d03d30e091 Credits Rafie Muhammad...

WordPress Auto Set Admin Colour on Staging and Dev Plugin <= 4.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Auto Set Admin Colour on Staging and Dev Type Plugin Vulnerable versions = 4.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bc1617de8fbf Credits Rafie...

WordPress Unite Gallery Lite Plugin < 1.7.61 is vulnerable to Cross Site Scripting (XSS)

Software Unite Gallery Lite Type Plugin Vulnerable versions 1.7.61 Fixed in 1.7.61 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7a8cd76e55c3 Credits Rafie Muhammad Patchstack...

WordPress KVoucher Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software KVoucher Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ade14511d45c Credits Rafie Muhammad Patchstack Required...

WordPress Booking Weir Plugin <= 1.0.11 is vulnerable to Cross Site Scripting (XSS)

Software Booking Weir Type Plugin Vulnerable versions = 1.0.11 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2f04da911473 Credits Rafie Muhammad Patchstack Required...

WordPress WooCommerce Cross-Seller Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Cross-Seller Type Plugin Vulnerable versions = 1.0.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e5e99150d929 Credits Rafie Muhammad Patchstack...

WordPress Premmerce Plugin <= 1.3.17 is vulnerable to Cross Site Scripting (XSS)

Software Premmerce Type Plugin Vulnerable versions = 1.3.17 Fixed in 1.3.18 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID 278ff9c96050 Credits Rafie Muhammad Patchstack Required privile...

WordPress SocialMark – Easy Watermark/Logo on Social Media Post Link Share Preview Plugin <= 2.0.6 is vulnerable to Cross Site Scripting (XSS)

Software SocialMark – Easy Watermark/Logo on Social Media Post Link Share Preview Type Plugin Vulnerable versions = 2.0.6 Fixed in 2.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership...

WordPress Elementor Stripe Payment Plugin < 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Stripe Payment Type Plugin Vulnerable versions 1.2.2 Fixed in 1.2.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 457af1099132 Credits Rafie Muhammad Patchstack...

WordPress Mass Pages/Posts Creator Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Mass Pages/Posts Creator Type Plugin Vulnerable versions = 2.1.6 Fixed in 2.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e259a062e790 Credits Rafie Muhammad Patchsta...

WordPress WordPress SEO Audit Plugin – WP Site Auditor Plugin < 1.2.9 is vulnerable to Cross Site Scripting (XSS)

Software WordPress SEO Audit Plugin – WP Site Auditor Type Plugin Vulnerable versions 1.2.9 Fixed in 1.2.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5c8c57e7a35f Credits Rafie...

WordPress Pixel Manager for WooCommerce Plugin < 1.32.4 is vulnerable to Cross Site Scripting (XSS)

Software Pixel Manager for WooCommerce Type Plugin Vulnerable versions 1.32.4 Fixed in 1.32.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer SweetCode PSID ad00a7298176 Credits Rafie Muhammad Patchstac...