The Testimonial Slider plugin for WordPress is susceptible to Stored Cross-Site Scripting via the 'testimonialcategory' shortcode, allowing authenticated attackers to inject arbitrary web scripts on pages
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
![]() | Testimonial Slider < 1.3.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | 3 May 202400:00 | – | wpvulndb |
![]() | WordPress Testimonial Slider Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS) | 5 May 202400:00 | – | patchstack |
![]() | CVE-2024-4193 Testimonial Slider <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | 9 May 202420:03 | – | vulnrichment |
![]() | CVE-2024-4193 | 14 May 202415:43 | – | cve |
![]() | CVE-2024-4193 Testimonial Slider <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | 9 May 202420:03 | – | cvelist |
![]() | Wordfence Intelligence Weekly WordPress Vulnerability Report (April 29, 2024 to May 5, 2024) | 9 May 202416:49 | – | wordfence |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo