WordPress WP Delicious Plugin < 1.5.3 is vulnerable to Cross Site Scripting (XSS)

Software WP Delicious Type Plugin Vulnerable versions 1.5.3 Fixed in 1.5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f958188390a5 Credits Rafie Muhammad Patchstack Required...

WordPress RevivePress Plugin < 1.5.3 is vulnerable to Cross Site Scripting (XSS)

Software RevivePress Type Plugin Vulnerable versions 1.5.3 Fixed in 1.5.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e19b58dc50bd Credits Rafie Muhammad Patchstack Required...

WordPress Forms to Sendinblue Plugin <= 5.2.2 is vulnerable to Cross Site Scripting (XSS)

Software Forms to Sendinblue Type Plugin Vulnerable versions = 5.2.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 455e2c223c64 Credits Rafie Muhammad Patchstack...

WordPress Floating Awesome Button Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Floating Awesome Button Type Plugin Vulnerable versions = 1.6.1 Fixed in 1.7.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a554276c1f96 Credits Rafie Muhammad Patchstac...

WordPress Go Viral – social share, social sharebar, social locker, social chat, open graph, reactions, share & view counters Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

Software Go Viral – social share, social sharebar, social locker, social chat, open graph, reactions, share & view counters Type Plugin Vulnerable versions = 1.8.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severit...

WordPress Video Embed & Thumbnail Generator Plugin < 4.8.11 is vulnerable to Cross Site Scripting (XSS)

Software Video Embed & Thumbnail Generator Type Plugin Vulnerable versions 4.8.11 Fixed in 4.8.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 593159c2fc96 Credits Rafie Muhammad...

WordPress Instant Page Load Plugin <= 1.09 is vulnerable to Cross Site Scripting (XSS)

Software Instant Page Load Type Plugin Vulnerable versions = 1.09 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e04533f20844 Credits Rafie Muhammad Patchstack Require...

WordPress Rating Widget Plugin < 3.2.0 is vulnerable to Cross Site Scripting (XSS)

Software Rating Widget Type Plugin Vulnerable versions 3.2.0 Fixed in 3.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Rating-Widget PSID fd73e6791148 Credits Rafie Muhammad Patchstack Required...

WordPress Login Designer Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Login Designer Type Plugin Vulnerable versions = 1.6.1 Fixed in 1.6.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 91d36b63e0ed Credits Rafie Muhammad Patchstack Require...

WordPress Dracula Dark Mode - The Revolutionary Dark Mode Plugin For WordPress Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Dracula Dark Mode - The Revolutionary Dark Mode Plugin For WordPress Type Plugin Vulnerable versions = 1.0.0 Fixed in 1.0.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress Extreme Blocks Plugin <= 0.8.1 is vulnerable to Cross Site Scripting (XSS)

Software Extreme Blocks Type Plugin Vulnerable versions = 0.8.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 084f10a70314 Credits Rafie Muhammad Patchstack Required...

WordPress WooCommerce Quick Reports Plugin <= 2.7.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce Quick Reports Type Plugin Vulnerable versions = 2.7.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 03b59d7f21d4 Credits Rafie Muhammad Patchstac...

WordPress WP How to - WordPress Tutorial Videos Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software WP How to - WordPress Tutorial Videos Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9a7c3c08eb69 Credits Rafie Muhamm...

WordPress MoceanAPI Order SMS Notification for WooCommerce Plugin <= 1.4.12 is vulnerable to Cross Site Scripting (XSS)

Software MoceanAPI Order SMS Notification for WooCommerce Type Plugin Vulnerable versions = 1.4.12 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f1276d575ff0 Credits...

WordPress Sprout Clients Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS)

Software Sprout Clients Type Plugin Vulnerable versions = 3.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 68806fbebbf5 Credits Rafie Muhammad Patchstack Required...

WordPress VO Store Locator – WP Store Locator Plugin Plugin <= 3.3.0 is vulnerable to Cross Site Scripting (XSS)

Software VO Store Locator – WP Store Locator Plugin Type Plugin Vulnerable versions = 3.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 48d9000ab0fb Credits Rafie...

WordPress GOAuth Plugin <= 2.20 is vulnerable to Cross Site Scripting (XSS)

Software GOAuth Type Plugin Vulnerable versions = 2.20 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1aeda2a1b24f Credits Rafie Muhammad Patchstack Required privilege...

WordPress Relax Spa Theme < 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Relax Spa Type Theme Vulnerable versions 1.1.1 Fixed in 1.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b6d96cda06db Credits Rafie Muhammad Patchstack Required...

WordPress Freemage Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Freemage Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 11465d247b6e Credits Rafie Muhammad Patchstack Required privileg...

WordPress Choice Payment Gateway for WooCommerce Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Choice Payment Gateway for WooCommerce Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fa9893c69c54 Credits Rafie...