4 matches found
CVE-2022-4750
The WP Responsive Testimonials Slider And Widget WordPress plugin through 1.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored...
CVE-2022-4750 WP Responsive Testimonials Slider And Widget <= 1.5 - Contributor+ Stored XSS
The WP Responsive Testimonials Slider And Widget WordPress plugin through 1.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored...
CVE-2022-4750
The CVE-2022-4750 entry concerns the WP Responsive Testimonials Slider And Widget WordPress plugin (versions 1.5 and earlier). Affected component: shortcode attributes output; root cause: lack of validation/escaping of shortcode attributes before rendering in pages/posts. Impact: stored cross-sit...
WordPress WP Responsive Testimonials Slider And Widget Plugin <= 1.5 is vulnerable to Cross Site Scripting (XSS)
Software WP Responsive Testimonials Slider And Widget Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4750 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 98b84c639eda...