2 matches found
CVE-2022-40213 WordPress GS Testimonial Slider plugin <= 1.9.6 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities
Multiple Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerabilities in GS Testimonial Slider plugin = 1.9.6 at WordPress...
CVE-2022-40213
The CVE concerns the WordPress GS Testimonial Slider plugin with versions prior to 1.9.7, where multiple authenticated Stored Cross-Site Scripting (XSS) vulnerabilities exist due to insufficient input filtering/escaping. An attacker with contributor+ privileges can inject scripts that are stored ...