CVE-2025-49245 WordPress Testimonials Showcase plugin <= 1.9.16 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cmoreira Testimonials Showcase allows Reflected XSS. This issue affects Testimonials Showcase: from n/a through 1.9.16...

WordPress Testimonials Plugin <= 4.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Testimonials Type Plugin Vulnerable versions = 4.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43959 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 8da344adddf2 Credits Abdi Pranata Required privilege...

CVE-2024-37553 WordPress Testimonials Widget plugin <= 4.0.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Axelerant Testimonials Widget allows Stored XSS.This issue affects Testimonials Widget: from n/a through 4.0.4...

WordPress Testimonials Widget Plugin <= 4.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Testimonials Widget Type Plugin Vulnerable versions = 4.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37553 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e3f989753985 Credits Joshua Chan Required privilege...

WordPress Testimonials Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Testimonials Type Plugin Vulnerable versions = 3.0.5 Fixed in 3.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31348 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 559aa6c49df6 Credits Khalid Yusuf Required privilege Contribut...

WordPress Plugin WP Testimonials 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

CVE-2022-33191 WordPress Testimonials plugin <= 3.0.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated contributor or higher user role Stored Cross-Site Scripting XSS vulnerability in Chinmoy Paul's Testimonials plugin = 3.0.1 at WordPress...

WordPress Testimonials Widget plugin <= 2.5.1 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities found by Nguyen Anh Tien in WordPress Testimonials Widget plugin versions = 2.5.1. Solution Update the WordPress Testimonials Widget plugin to the latest available version at least 4.0.0...