CVE-2023-27628

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Webvitaly Sitekit plugin = 1.3 versions...

PT-2023-27391 · Milan Petrovic · Gd Security Headers

Name of the Vulnerable Software and Affected Versions: Milan Petrovic GD Security Headers plugin versions = 1.6.1 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing th...

CVE-2023-39918

Unauth. Reflected Cross-Site Scripting XSS vulnerability in SAASPROJECT Booking Package Booking Package plugin = 1.6.01 versions...

CVE-2023-40206 WordPress WP 404 Auto Redirect to Similar Post Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in hwk-fr WP 404 Auto Redirect to Similar Post plugin = 1.0.3 versions...

CVE-2023-38518

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Visualmodo Borderless plugin = 1.4.8 versions...

CVE-2023-38476

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in SuiteDash :: ONE Dashboard® Client Portal : SuiteDash Direct Login plugin = 1.7.6 versions...

CVE-2023-25477

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Yotuwp Video Gallery plugin = 1.3.12 versions...

CVE-2023-35092

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Abhay Yadav Breadcrumb simple plugin = 1.3 versions...

CVE-2023-32294

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Radical Web Design GDPR Cookie Consent Notice Box plugin = 1.1.6 versions...

CVE-2023-25471 WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Webcodin WCP OpenWeather plugin = 2.5.0 versions...

CVE-2023-34022

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Rakib Hasan Dynamic QR Code Generator plugin = 0.0.5 versions...

CVE-2023-34023

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Miled WordPress Social Login plugin = 3.0.4 versions...

PT-2023-24711 · Yandex · Alexander Semikashev Yandex Metrica Counter

Name of the Vulnerable Software and Affected Versions: Alexander Semikashev Yandex Metrica Counter plugin versions = 1.4.3 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects the Alexander Semikashev Yandex Metrica Counter plugin. This vulnerability...

PT-2023-24725 · Unknown · Alan Tien Call Now Icon Animate

Name of the Vulnerable Software and Affected Versions: Alan Tien Call Now Icon Animate plugin versions 0.1.0 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. There is no information provided about...

CVE-2023-32595

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Palasthotel by Edward Bock, Katharina Rompf Sunny Search plugin = 1.0.2 versions...

CVE-2023-24394

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Gopi Ramasamy iframe popup plugin = 3.3 versions...

CVE-2023-32108

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ignazio Scimone Albo Pretorio On line plugin = 4.6.3 versions...

CVE-2023-32107

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Photo Gallery Team Photo Gallery by Ays – Responsive Image Gallery plugin = 5.1.3 versions...

CVE-2023-28693

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Balasaheb Bhise Advanced Youtube Channel Pagination plugin = 1.0 version...

CVE-2023-28622

Auth. author+ Stored Cross-Site Scripting XSS vulnerability in Trident Technolabs Easy Slider Revolution plugin = 1.0.0 versions...