Lucene search
+L

4 matches found

vulnrichment
vulnrichment
added 2024/09/26 9:29 a.m.12 views

CVE-2024-9127 Super Testimonials <= 3.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via alignment Parameter

The Super Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘alignment’ parameter in all versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS5.8AI score0.00332EPSS
Exploits0References4
cve
cve
added 2024/09/26 9:29 a.m.50 views

CVE-2024-9127

The CVE CVE-2024-9127 affects the WordPress plugin Super Testimonials (sola-testimonials) up to version 3.0.0. The root cause is Stored Cross‑Site Scripting via the alignment parameter due to insufficient input sanitization and output escaping. Exploitation requires authentication at Contributor ...

6.4CVSS5.5AI score0.00332EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2024/09/26 9:29 a.m.22 views

CVE-2024-9127 Super Testimonials <= 3.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via alignment Parameter

The Super Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘alignment’ parameter in all versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

6.4CVSS0.00332EPSS
Exploits0References4
patchstack
patchstack
added 2024/09/26 12:0 a.m.12 views

WordPress Super Testimonials Plugin <= 3.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Super Testimonials Type Plugin Vulnerable versions = 3.0.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9127 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f0b50a68f0f9 Credits Francesco Carlucci...

6.4CVSS5.8AI score0.00332EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder