Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:40 a.m.7 views

CVE-2024-31348

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Testimonials allows Stored XSS.This issue affects Testimonials: from n/a through 3.0.5...

6.5CVSS8.6AI score0.00357EPSS
Exploits0References1
NVD
NVD
added 2024/04/07 6:15 p.m.16 views

CVE-2024-31348

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Testimonials allows Stored XSS.This issue affects Testimonials: from n/a through 3.0.5...

6.5CVSS6.4AI score0.00357EPSS
Exploits0References1
CVE
CVE
added 2024/04/07 5:36 p.m.50 views

CVE-2024-31348

The CVE-2024-31348 entry corresponds to a Stored XSS in Themepoints Testimonials (WordPress) affecting the Testimonials plugin up to version 3.0.5. Public remediation is available: patches exist and the CVE is listed as patched in Wordfence/WP advisories, indicating a fix is released (3.0.5). If ...

6.5CVSS8.6AI score0.00357EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/07 5:36 p.m.24 views

CVE-2024-31348 WordPress Super Testimonials plugin <= 3.0.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themepoints Testimonials allows Stored XSS.This issue affects Testimonials: from n/a through 3.0.5...

6.5CVSS6.6AI score0.00357EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/04/05 12:0 a.m.8 views

WordPress Testimonials Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS)

Software Testimonials Type Plugin Vulnerable versions = 3.0.5 Fixed in 3.0.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31348 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 559aa6c49df6 Credits Khalid Yusuf Required privilege Contribut...

6.5CVSS6.6AI score0.00357EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder