4 matches found
CVE-2025-49410
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Imran Emu TC Testimonials allows Stored XSS. This issue affects TC Testimonials: from n/a through 1.1.1...
CVE-2025-49410
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Imran Emu TC Testimonials allows Stored XSS. This issue affects TC Testimonials: from n/a through 1.1.1...
CVE-2025-49410
CVE-2025-49410- WordPress Portfolio Manager Pro Plugin <= 3.8 – Unauthenticated Arbitrary File Upload vulnerability. According to Patchstack and CVE records, it allows uploading a dangerous file (e.g., web shell) due to improper file handling, enabling potential remote code execution on affect...
PT-2025-33945 · Unknown · Imran Emu Tc Testimonials
Name of the Vulnerable Software and Affected Versions: Imran Emu TC Testimonials versions through 1.1.1 Description: Improper neutralization of input during web page generation allows for stored cross-site scripting XSS. This issue enables the injection of malicious scripts into web pages...