Easy Testimonials Security Vulnerabilities and Issues — Easy Testimonials CVE List

Lucene search

GoldpluginsEasy Testimonials

3 matches found

CVE•added 2017/08/01 5:29 a.m.•49 views

CVE-2017-12131

The Easy Testimonials plugin 3.0.4 for WordPress has XSS in include/settings/display.options.php, as demonstrated by the Default Testimonials Width, View More Testimonials Link, and Testimonial Excerpt Options screens.

6.1CVSS6AI score0.0023EPSS

CVE•added 2024/07/20 3:15 a.m.•48 views

CVE-2024-2337

The Easy Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'testimonials_grid ' shortcode in all versions up to, and including, 3.9.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for auth...

6.4CVSS5.7AI score0.00024EPSS

CVE•added 2018/11/26 6:29 p.m.•47 views

CVE-2018-19564

Stored XSS was discovered in the Easy Testimonials plugin 3.2 for WordPress. Three wp-admin/post.php parameters (_ikcf_client and _ikcf_position and _ikcf_other) have Cross-Site Scripting.

6.1CVSS5.9AI score0.00174EPSS