Lucene search
+L

554 matches found

EUVD
EUVD
added 2025/10/27 3:30 a.m.6 views

EUVD-2025-36012

Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Testimonial Slider: from n/a through = 2.0.15...

6.5AI score0.00301EPSS
Exploits0References2
NVD
NVD
added 2025/10/27 2:15 a.m.4 views

CVE-2025-62929

Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Testimonial Slider: from n/a through = 2.0.15...

6.5CVSS0.00301EPSS
Exploits0References1
CVE
CVE
added 2025/10/27 1:34 a.m.7 views

CVE-2025-62929

CVE-2025-62929 concerns the WordPress plugin “Testimonial Slider” (versions up to 2.0.15) and describes a Missing Authorization/Broken Access Control vulnerability. The issue arises from incorrectly configured access control security levels, enabling unauthorized actions that could affect testimo...

6.5CVSS6.6AI score0.00301EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/27 1:34 a.m.11 views

CVE-2025-62929 WordPress Testimonial Slider plugin <= 2.0.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Testimonial Slider: from n/a through = 2.0.15...

6.5CVSS0.00301EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/27 1:34 a.m.2 views

CVE-2025-62929 WordPress Testimonial Slider plugin <= 2.0.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Testimonial Slider: from n/a through = 2.0.15...

6.5CVSS6.6AI score0.00301EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.3 views

WordPress plugin Testimonial Slider 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

6.5CVSS6.6AI score0.00301EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.5 views

PT-2025-43805

Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Testimonial Slider: from n/a through = 2.0.15...

8.8CVSS7AI score0.00301EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/26 6:36 a.m.15 views

CVE-2025-8666

The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions less than, or equal to, 11.6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5.3AI score0.00227EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/26 12:0 a.m.7 views

WordPress plugin Testimonial Carousel For Elementor 安全漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerability exists in...

6.4CVSS5.7AI score0.00227EPSS
Exploits0References1
NVD
NVD
added 2025/10/25 6:15 a.m.5 views

CVE-2025-8666

The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions less than, or equal to, 11.6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00227EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/10/25 5:31 a.m.12 views

CVE-2025-8666 Testimonial Carousel For Elementor <= 11.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions less than, or equal to, 11.6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00227EPSS
Exploits0References6
CVE
CVE
added 2025/10/25 5:31 a.m.24 views

CVE-2025-8666

CVE-2025-8666 concerns the WordPress plugin Testimonial Carousel For Elementor (versions ≤ 11.6.2). The stored XSS vulnerability arises from insufficient input sanitization and output escaping across multiple parameters, enabling an attacker with Contributor-level access or higher to inject scrip...

6.4CVSS5AI score0.00227EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/10/25 5:31 a.m.4 views

CVE-2025-8666 Testimonial Carousel For Elementor <= 11.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions less than, or equal to, 11.6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS4.9AI score0.00227EPSS
Exploits0References6
Patchstack
Patchstack
added 2025/10/25 1:12 a.m.12 views

WordPress Testimonial Carousel For Elementor plugin <= 11.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by zer0gh0st in WordPress Plugin Testimonial Carousel For Elementor versions = 11.6.2...

6.4CVSS5.5AI score0.00227EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/25 12:0 a.m.10 views

PT-2025-43715

Name of the Vulnerable Software and Affected Versions Testimonial Carousel For Elementor plugin for WordPress versions prior to 11.6.3 Description The Testimonial Carousel For Elementor plugin for WordPress is susceptible to Stored Cross-Site Scripting due to inadequate input sanitization and...

6.4CVSS5.4AI score0.00227EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/10/23 3:14 p.m.8 views

CVE-2025-32657

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Testimonial Slider And Showcase Pro testimonial-slider-showcase-pro allows PHP Local File Inclusion.This issue affects Testimonial Slider And Showcase Pro: from n/a...

7.5CVSS7.1AI score0.00573EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/22 3:31 p.m.7 views

EUVD-2025-35571

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Testimonial Slider And Showcase Pro testimonial-slider-showcase-pro allows PHP Local File Inclusion.This issue affects Testimonial Slider And Showcase Pro: from n/a...

5.3CVSS6.6AI score0.00573EPSS
Exploits0References2
NVD
NVD
added 2025/10/22 3:15 p.m.9 views

CVE-2025-32657

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Testimonial Slider And Showcase Pro testimonial-slider-showcase-pro allows PHP Local File Inclusion.This issue affects Testimonial Slider And Showcase Pro: from n/a...

7.5CVSS0.00573EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.12 views

CVE-2025-32657 WordPress Testimonial Slider and Showcase Pro plugin <= 2.1.7 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Testimonial Slider And Showcase Pro testimonial-slider-showcase-pro allows PHP Local File Inclusion.This issue affects Testimonial Slider And Showcase Pro: from n/a...

7.5CVSS0.00573EPSS
Exploits0References1
CVE
CVE
added 2025/10/22 2:32 p.m.46 views

CVE-2025-32657

CVE-2025-32657 describes a Local File Inclusion vulnerability in the WordPress plugin “RadiusTheme Testimonial Slider And Showcase Pro” (versions

7.5CVSS6.7AI score0.00573EPSS
Exploits0References1
Rows per page
Query Builder