WordPress WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule Plugin <= 2020.1.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule Type Plugin Vulnerable versions = 2020.1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1...

WordPress Embedder for Google Reviews Plugin < 1.5.12 is vulnerable to Cross Site Scripting (XSS)

Software Embedder for Google Reviews Type Plugin Vulnerable versions 1.5.12 Fixed in 1.5.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 37b56b9878e8 Credits Rafie Muhammad...

WordPress MoceanAPI Abandoned Carts for WooCommerce Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)

Software MoceanAPI Abandoned Carts for WooCommerce Type Plugin Vulnerable versions = 1.2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a4413625463e Credits Rafie...

WordPress BuddyDrive Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software BuddyDrive Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 756f9bf13ef8 Credits Rafie Muhammad Patchstack Required...

WordPress WPBricks – Library of Gutenberg Blocks & Templates Plugin <= 2.0.8 is vulnerable to Cross Site Scripting (XSS)

Software WPBricks – Library of Gutenberg Blocks & Templates Type Plugin Vulnerable versions = 2.0.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2ec32d8ecb22 Credits...

WordPress Local Delivery Drivers for WooCommerce Plugin < 1.9.0 is vulnerable to Cross Site Scripting (XSS)

Software Local Delivery Drivers for WooCommerce Type Plugin Vulnerable versions 1.9.0 Fixed in 1.9.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43f3ba1f28bd Credits Rafie...

WordPress Auto Post WooCommerce Products Plugin <= 2.1.60 is vulnerable to Cross Site Scripting (XSS)

Software Auto Post WooCommerce Products Type Plugin Vulnerable versions = 2.1.60 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 62a38305781e Credits Rafie Muhammad...

WordPress Atlas – Knowledge Base Plugin <= 6.0 is vulnerable to Cross Site Scripting (XSS)

Software Atlas – Knowledge Base Type Plugin Vulnerable versions = 6.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a66e5ae77863 Credits Rafie Muhammad Patchstack...

WordPress Gravity Forms Sticky List Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Gravity Forms Sticky List Type Plugin Vulnerable versions = 1.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 70cee7cd7d21 Credits Rafie Muhammad Patchstac...

WordPress PopOverXYZ – Show Light Weight Beautiful Tool Tips On Any Text Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software PopOverXYZ – Show Light Weight Beautiful Tool Tips On Any Text Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Opensea Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)

Software Opensea Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d4de12a3cf9 Credits Rafie Muhammad Patchstack Required privilege...

WordPress Database Table Overview and Logs Plugin < 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software Database Table Overview and Logs Type Plugin Vulnerable versions 1.1.0 Fixed in 1.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43825b47431f Credits Rafie Muhammad...

WordPress Easy Post Views Count Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Easy Post Views Count Type Plugin Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a0c7ddb24e98 Credits Rafie Muhammad Patchstack...

WordPress Raise Prices with Sales for WooCommerce Plugin <= 1.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Raise Prices with Sales for WooCommerce Type Plugin Vulnerable versions = 1.3.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d1b6d642c4a5 Credits Rafie...

WordPress WooCommerce – Country Based Payments Plugin < 1.4.4.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce – Country Based Payments Type Plugin Vulnerable versions 1.4.4.1 Fixed in 1.4.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9fac42c838fb Credits Rafie...

WordPress WP Front User Submit / Front Editor Plugin <= 4.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Front User Submit / Front Editor Type Plugin Vulnerable versions = 4.0.0 Fixed in 4.0.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 89f437533c46 Credits Rafie Muhamm...

WordPress Widgets for SiteOrigin Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS)

Software Widgets for SiteOrigin Type Plugin Vulnerable versions = 1.4.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 717d2bce0621 Credits Rafie Muhammad Patchstack...

WordPress GFireM Action After Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software GFireM Action After Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 980302f4a4bb Credits Rafie Muhammad Patchstack...

WordPress Broadcast Lite Theme < 2.0.8 is vulnerable to Cross Site Scripting (XSS)

Software Broadcast Lite Type Theme Vulnerable versions 2.0.8 Fixed in 2.0.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8dc3411567dd Credits Rafie Muhammad Patchstack Required...

WordPress Wp My Admin Bar Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Wp My Admin Bar Type Plugin Vulnerable versions = 3.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 491eed150f92 Credits Rafie Muhammad Patchstack Required...