WordPress Run Contests, Raffles, and Giveaways with ContestsWP Plugin < 1.9.8 is vulnerable to Cross Site Scripting (XSS)

Software Run Contests, Raffles, and Giveaways with ContestsWP Type Plugin Vulnerable versions 1.9.8 Fixed in 1.9.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c939c7b8102a Credi...

WordPress ConeBlog – WordPress Blog Widgets Plugin <= 1.4.7 is vulnerable to Cross Site Scripting (XSS)

Software ConeBlog – WordPress Blog Widgets Type Plugin Vulnerable versions = 1.4.7 Fixed in 1.4.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer WP Cone PSID 46d2d31b4e72 Credits Rafie Muhammad...

WordPress Product Price History for WooCommerce Plugin < 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Product Price History for WooCommerce Type Plugin Vulnerable versions 2.1.6 Fixed in 2.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f6582974ed46 Credits Rafie Muhamm...

WordPress Forms to Sheets Plugin <= 5.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Forms to Sheets Type Plugin Vulnerable versions = 5.2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b0dac35e5d40 Credits Rafie Muhammad Patchstack Required...

WordPress SLP – Extenders Plugin <= 6.1.1 is vulnerable to Cross Site Scripting (XSS)

Software SLP – Extenders Type Plugin Vulnerable versions = 6.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f659d4022f0d Credits Rafie Muhammad Patchstack Required...

WordPress Elasta Theme < 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Elasta Type Theme Vulnerable versions 1.0.9 Fixed in 1.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6c84debbae4a Credits Rafie Muhammad Patchstack Required privilege...

WordPress HM Resume Manager Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software HM Resume Manager Type Plugin Vulnerable versions = 2.2 Fixed in 2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 912793162937 Credits Rafie Muhammad Patchstack Required...

WordPress B Blocks - The ultimate block collection Plugin < 1.7.8 is vulnerable to Cross Site Scripting (XSS)

Software B Blocks - The ultimate block collection Type Plugin Vulnerable versions 1.7.8 Fixed in 1.7.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7a29938020aa Credits Rafie...

WordPress Auto SEO META keywords (META tags keywords) optimization + WooCommerce Plugin < 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Auto SEO META keywords META tags keywords optimization + WooCommerce Type Plugin Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Device Frame Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Device Frame Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 716731f50ce3 Credits Rafie Muhammad Patchstack Required...

WordPress WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking Plugin <= 3.7.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking Type Plugin Vulnerable versions = 3.7.0 Fixed in 3.7.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim...

WordPress Ai Robot Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Software Ai Robot Type Plugin Vulnerable versions = 1.0.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ec1756a28842 Credits Rafie Muhammad Patchstack Required...

WordPress BuddyForms EasyPin Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software BuddyForms EasyPin Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID adb78d8da60d Credits Rafie Muhammad Patchstack...

WordPress Script Planner Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Script Planner Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b3b13fcbcc38 Credits Rafie Muhammad Patchstack Required...

WordPress Staggs Product Configurator for WooCommerce Plugin < 1.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Staggs Product Configurator for WooCommerce Type Plugin Vulnerable versions 1.4.2 Fixed in 1.4.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 63876648fcb8 Credits Rafie...

WordPress OliveWP Companion Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software OliveWP Companion Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7e6ce7e1f348 Credits Rafie Muhammad Patchstack Requir...

WordPress Top News – Best News Plugin for WordPress Plugin < 2.3.7 is vulnerable to Cross Site Scripting (XSS)

Software Top News – Best News Plugin for WordPress Type Plugin Vulnerable versions 2.3.7 Fixed in 2.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c525dae0bf4f Credits Rafie...

WordPress WooCommerce Dynamic Pricing and Discount Rules Plugin <= 2.3.3 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Dynamic Pricing and Discount Rules Type Plugin Vulnerable versions = 2.3.3 Fixed in 2.3.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 506694d0fc2e Credits...

WordPress 3D viewer – Embed 3D Models Plugin < 1.3.4 is vulnerable to Cross Site Scripting (XSS)

Software 3D viewer – Embed 3D Models Type Plugin Vulnerable versions 1.3.4 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42920a97a20a Credits Rafie Muhammad...

WordPress W3SCloud Contact Form 7 to Zoho CRM Plugin <= 3.0 is vulnerable to Cross Site Scripting (XSS)

Software W3SCloud Contact Form 7 to Zoho CRM Type Plugin Vulnerable versions = 3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43a2cdb360ec Credits Rafie Muhammad...