Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/10/25 5:31 a.m.4 views

CVE-2025-8666 Testimonial Carousel For Elementor <= 11.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions less than, or equal to, 11.6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS4.9AI score0.00227EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-27209

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00326EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/30 12:0 a.m.3 views

PT-2024-19471 · WordPress · Testimonial Carousel For Elementor

Name of the Vulnerable Software and Affected Versions: Testimonial Carousel For Elementor plugin for WordPress versions up to, and including, 10.2.1 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's carousel widgets,...

6.4CVSS7AI score0.00326EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/05/25 12:0 a.m.5 views

PT-2024-33154 · Openai · Openai Api

Name of the Vulnerable Software and Affected Versions: The Testimonial Carousel For Elementor plugin for WordPress versions up to, and including, 10.2.0 Description: The issue is related to a missing capability check on the save testimonials option callback function, allowing unauthorized...

5.3CVSS6.3AI score0.00402EPSS
Exploits0References8
Rows per page
Query Builder