20 matches found
CVE-2015-10147
The Easy Testimonial Slider and Form plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...
CVE-2015-10147
CVE-2015-10147 summary (NORMAL) The Easy Testimonial Slider and Form WordPress plugin is vulnerable to SQL Injection via the id parameter in all versions up to and including 1.0.2 due to insufficient escaping and improper query preparation. This allows authenticated attackers with Administrator-l...
EUVD-2015-9405
The Easy Testimonial Slider and Form plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...
WordPress Easy Testimonial Slider and Form plugin <= 1.0.2 - Authenticated (Admin+) SQL injection vulnerability
Authenticated Admin+ SQL injection vulnerability discovered by Ala Arfaoui in WordPress Plugin Easy Testimonial Slider and Form versions = 1.0.2...
PT-2025-44271
Name of the Vulnerable Software and Affected Versions Easy Testimonial Slider and Form versions up to and including 1.0.2 Description The Easy Testimonial Slider and Form plugin for WordPress is susceptible to SQL Injection via the id parameter. This is due to inadequate input sanitization and...
WordPress plugin Easy Testimonial Slider and Form SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A SQL injection...
EUVD-2023-50043
Malicious code in bioql PyPI...
EUVD-2022-49581
Malicious code in bioql PyPI...
CVE-2023-45754
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution Easy Testimonial Slider and Form allows Stored XSS.This issue affects Easy Testimonial Slider and Form: from n/a through 1.0.18...
CVE-2022-46799
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Easy Testimonial Slider and Form plugin = 1.0.15 versions...
CVE-2023-45754
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution Easy Testimonial Slider and Form allows Stored XSS.This issue affects Easy Testimonial Slider and Form: from n/a through 1.0.18...
CVE-2023-45754
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution Easy Testimonial Slider and Form allows Stored XSS.This issue affects Easy Testimonial Slider and Form: from n/a through 1.0.18...
WordPress Plugin Easy Testimonial Slider and Form Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
CVE-2023-45754
CVE-2023-45754 : A stored Cross-Site Scripting (XSS) flaw in the WordPress plugin “Easy Testimonial Slider and Form” (versions ≤ 1.0.18). The root cause is improper input neutralization during web page generation, enabling an attacker (with administrator privileges per PatchStack/Wordfence contex...
PT-2023-29670 · WordPress · Easy Testimonial Slider/Form
Name of the Vulnerable Software and Affected Versions: Easy Testimonial Slider and Form versions 1.0.18 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can...
CVE-2022-46799
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Easy Testimonial Slider and Form plugin = 1.0.15 versions...
CVE-2022-46799
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Easy Testimonial Slider and Form plugin = 1.0.15 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Easy Testimonial Slider and Form plugin = 1.0.15 versions...
CVE-2022-46799
The CVE-2022-46799 entry describes an unauthenticated Reflected Cross-Site Scripting (XSS) in the WordPress plugin Easy Testimonial Slider and Form, versions up to 1.0.15. The root cause is improper input handling (lack of proper sanitization/escaping) when outputting a parameter back to the page...
WordPress Easy Testimonial Slider and Form Plugin <= 1.0.15 is vulnerable to Cross Site Scripting (XSS)
Software Easy Testimonial Slider and Form Type Plugin Vulnerable versions = 1.0.15 Fixed in 1.0.16 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-46799 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 929579106c87 Credit...