WordPress Easy Responsive Pricing Tables Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Easy Responsive Pricing Tables Type Plugin Vulnerable versions = 1.1.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID fb3563effd7d Credits Rafie Muhammad Patchsta...

CVE-2023-2500

CVE-2023-2500 affects the Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress (versions ≤ 3.3.19). The vulnerability is PHP Object Injection via deserialization of untrusted input in the go_pricing shortcode data parameter. It requires subscriber-level authentication or higher; ...

CVE-2023-2498

CVE-2023-2498 affects the Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress. A stored XSS via shortcodes exists in versions up to and including 3.3.19 due to insufficient input sanitization and output escaping, enabling contributed-level attackers to inject scripts on pages vi...