2 matches found
WordPress Elegant Testimonial plugin <= 1.1.6 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities
Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities found by Melbin K Mathew in WordPress Elegant Testimonial plugin versions = 1.1.6. Solution 2021-01-06 - we were unable to find a patched version of this plugin. WordPress.org notification - "This plugin has been closed as of...
WordPress Elegant Testimonial 1.1.6 Persistent Cross Site Scripting
Exploit Title: WordPress Elegant Testimonial Plugin v1.1.6 - Persistent Cross-Site Scripting Date: 2020-08-18 Vendor Homepage: https://noorsplugin.com/ Vendor Changelog: https://wordpress.org/plugins/wp-elegant-testimonial/developers Exploit Author: Melbin K Mathew @melbinkm Author Advisory:...