5104 matches found
WordPress Remove WP Update Nags Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS)
Software Remove WP Update Nags Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4c53c2dafb06 Credits Rafie Muhammad Patchstack...
WordPress Preloader Plus - Wordpress Loading Screen Plugin Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)
Software Preloader Plus - Wordpress Loading Screen Plugin Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 75f3c8995ac0 Credits Rafie...
WordPress BuddyForms Moderation ( Former: Review Logic ) Plugin <= 1.4.7 is vulnerable to Cross Site Scripting (XSS)
Software BuddyForms Moderation Former: Review Logic Type Plugin Vulnerable versions = 1.4.7 Fixed in 1.4.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8604cd24c7fb Credits Rafie...
WordPress DiviTorque – Divi Theme, Divi Builder and Extra Theme Plugin <= 3.5.8 is vulnerable to Cross Site Scripting (XSS)
Software DiviTorque – Divi Theme, Divi Builder and Extra Theme Type Plugin Vulnerable versions = 3.5.8 Fixed in 3.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID d967171dba70 Credit...
WordPress WordPress Image Compression and Optimizer Plugin â CheetahO Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)
Software WordPress Image Compression and Optimizer Plugin â CheetahO Type Plugin Vulnerable versions = 1.4.3 Fixed in 1.4.3.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID...
WordPress DeMomentSomTres Gravity Forms Improvements Plugin <= 20170425 is vulnerable to Cross Site Scripting (XSS)
Software DeMomentSomTres Gravity Forms Improvements Type Plugin Vulnerable versions = 20170425 Fixed in 201805021810 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 477dcd7d6435 Credits...
WordPress Go Fetch Jobs (for WP Job Manager) Plugin <= 1.8.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Go Fetch Jobs for WP Job Manager Type Plugin Vulnerable versions = 1.8.2.2 Fixed in 1.8.4.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4f78961ea025 Credits Rafie Muhammad...
WordPress WooBuddy Plugin <= 3.4.15 is vulnerable to Cross Site Scripting (XSS)
Software WooBuddy Type Plugin Vulnerable versions = 3.4.15 Fixed in 3.4.16 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2e4b04e137df Credits Rafie Muhammad Patchstack Required...
WordPress Mail Bank - #1 Mail SMTP Plugin for WordPress Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS)
Software Mail Bank - 1 Mail SMTP Plugin for WordPress Type Plugin Vulnerable versions = 3.0.12 Fixed in 3.0.13 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 0fd620833027 Credits Rafie...
WordPress Popup Maker Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS)
Software Popup Maker Type Plugin Vulnerable versions = 1.9.2 Fixed in 1.10.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b1490f38ddc0 Credits Rafie Muhammad Patchstack Required...
WordPress Spotlight Social Media Feeds Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS)
Software Spotlight Social Media Feeds Type Plugin Vulnerable versions = 1.6 Fixed in 1.6.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 91b8b157c36a Credits Rafie Muhammad Patchstack...
WordPress CF7 Constant Contact Fields Mapping Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)
Software CF7 Constant Contact Fields Mapping Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 513aaa765db6 Credits Rafie Muhammad...
WordPress Salon booking system Plugin <= 8.4.7 is vulnerable to Cross Site Scripting (XSS)
Software Salon booking system Type Plugin Vulnerable versions = 8.4.7 Fixed in 8.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 36c49c980842 Credits Rafie Muhammad Patchstack...
WordPress Simple Tour Guide Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS)
Software Simple Tour Guide Type Plugin Vulnerable versions = 1.0.5 Fixed in 1.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 16c7f68a1d9d Credits Rafie Muhammad Patchstack Required...
WordPress SV Tracking Manager Plugin <= 1.9.00 is vulnerable to Cross Site Scripting (XSS)
Software SV Tracking Manager Type Plugin Vulnerable versions = 1.9.00 Fixed in 2.0.00 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9607e9d7b8e8 Credits Rafie Muhammad Patchstack...
WordPress Mobile App Editor – WordPress to Android App Builder Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Mobile App Editor – WordPress to Android App Builder Type Plugin Vulnerable versions = 1.1.2 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2273721d5def Credits...
WordPress WP Native Articles - Instant Articles Plugin for WordPress Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)
Software WP Native Articles - Instant Articles Plugin for WordPress Type Plugin Vulnerable versions = 1.1.6 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 0bfd870f25d7...
WordPress Frontend Admin – Add and edit posts, pages, users and more all from the frontend Plugin <= 3.7.11 is vulnerable to Cross Site Scripting (XSS)
Software Frontend Admin – Add and edit posts, pages, users and more all from the frontend Type Plugin Vulnerable versions = 3.7.11 Fixed in 3.8.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim...
WordPress DeMomentSomTres Immediate Send Plugin <= 3.201704251244 is vulnerable to Cross Site Scripting (XSS)
Software DeMomentSomTres Immediate Send Type Plugin Vulnerable versions = 3.201704251244 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 395b22880d0c Credits Rafie Muhammad...
WordPress Order Picking For WooCommerce Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)
Software Order Picking For WooCommerce Type Plugin Vulnerable versions = 1.0.1 Fixed in 1.0.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a4268d220076 Credits Rafie Muhammad...