CVE-2023-4795
CVE-2023-4795 affects the WordPress plugin Testimonial Slider Shortcode (pre-1.1.9). The vulnerability arises from not validating/escaping certain shortcode attributes, enabling Stored XSS where an attacker with at least contributor privileges can target high-privilege users (e.g., admin). CVSSv3...