WordPress DancePress (TRWA) Plugin <= 2.4.6.3 is vulnerable to Cross Site Scripting (XSS)

Software DancePress TRWA Type Plugin Vulnerable versions = 2.4.6.3 Fixed in 3.1.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8e1b70af829b Credits Rafie Muhammad Patchstack Required...

WordPress DancePress (TRWA) plugin <= 2.4.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress DancePress TRWA plugin versions = 2.4.1. Solution No patched version available...