3 matches found
CVE-2024-2253
The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via URL values the plugin's carousel widgets in all versions up to, and including, 10.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-2253 Testimonial Carousel For Elementor <= 10.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via URL values the plugin's carousel widgets in all versions up to, and including, 10.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
WordPress Testimonial Carousel For Elementor Plugin <= 10.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Testimonial Carousel For Elementor Type Plugin Vulnerable versions = 10.2.2 Fixed in 10.2.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2253 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 411cbe7852c2 Credits...