CVE-2023-45010

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex MacArthur Complete Open Graph plugin = 3.4.5 versions...

CVE-2023-45836

Cross-Site Request Forgery CSRF vulnerability in XYDAC Ultimate Taxonomy Manager plugin = 2.0 versions...

PT-2023-29331 · Cytech · Cytech Buddymeet Plugin

Name of the Vulnerable Software and Affected Versions: Cytech BuddyMeet plugin versions = 2.2.0 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This type of vulnerability allows an attacker to inject malicious scripts into a website, which can then be execute...

CVE-2023-45047

Cross-Site Request Forgery CSRF vulnerability in LeadSquared, Inc LeadSquared Suite plugin = 0.7.4 versions...

CVE-2023-44997

Cross-Site Request Forgery CSRF vulnerability in Nitin Rathod WP Forms Puzzle Captcha plugin = 4.1 versions...

CVE-2023-44241

Cross-Site Request Forgery CSRF vulnerability in Keap Keap Landing Pages plugin = 1.4.2 versions...

WordPress plugin GEO my WordPress Cross Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

PT-2023-29250 · Unknown · Kvvaradha Kv Tinymce Editor Add Fonts

Name of the Vulnerable Software and Affected Versions: Kvvaradha Kv TinyMCE Editor Add Fonts plugin versions = 1.1 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions...

CVE-2023-25033

Cross-Site Request Forgery CSRF vulnerability in Sumo Social Share Boost plugin = 4.5 versions...

PT-2023-27537 · Cluevo · Cluevo Lms

Name of the Vulnerable Software and Affected Versions: CLUEVO CLUEVO LMS, E-Learning Platform plugin versions = 1.10.0 Description: A Cross-Site Request Forgery CSRF issue affects the CLUEVO CLUEVO LMS, E-Learning Platform plugin. This issue allows an attacker to perform unintended actions on a...

PT-2023-27157 · Radiustheme · The Post Grid

Name of the Vulnerable Software and Affected Versions: RadiusTheme The Post Grid plugin versions = 7.2.7 Description: A Cross-Site Request Forgery CSRF issue affects the RadiusTheme The Post Grid plugin. This allows an attacker to perform unintended actions on a user's behalf. Recommendations: Fo...

CVE-2023-44263

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Riyaz Social Metrics plugin = 2.2 versions...

CVE-2023-41734

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in nigauri Insert Estimated Reading Time plugin = 1.2 versions...

PT-2023-29166 · 2J · 2J Slideshow Team Slideshow

Name of the Vulnerable Software and Affected Versions: 2J Slideshow Team Slideshow, Image Slider by 2J plugin versions = 1.3.54 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability. This vulnerability requires authentication and affects users with contributor or...

CVE-2023-40667

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Lasso Simple URLs plugin = 117 versions...

PT-2023-21755 · Estatik · Estatik Mortgage Calculator Plugin

Name of the Vulnerable Software and Affected Versions: Estatik Estatik Mortgage Calculator plugin versions = 2.0.7 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing...

CVE-2023-40205

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Pixelgrade PixTypes plugin = 1.4.15 versions...

CVE-2023-39992

Unauth. Reflected Cross-Site Scripting XSS vulnerability in vCita.Com Online Booking & Scheduling Calendar for WordPress by vcita plugin = 4.3.2 versions...

CVE-2023-39919

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in maennchen1.De wpShopGermany – Protected Shops plugin = 2.0 versions...

PT-2023-20083 · Gopi Ramasamy · Wp Tell A Friend Popup Form Plugin

Name of the Vulnerable Software and Affected Versions: Gopi Ramasamy wp tell a friend popup form plugin versions = 7.1 Description: The issue is related to an Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with administrative access can inject...