6 matches found
CVE-2020-8549
The CVE-2020-8549 entry concerns the WordPress Strong Testimonials plugin, prior to version 2.40.1. The vulnerability is a stored XSS in the plugin (notably via client_name and company_name in the client details UI) that can lead to an attacker executing malicious actions, including stealing sess...
CVE-2024-3261
The CVE-2024-3261 entry concerns the WordPress plugin Strong Testimonials (prior to 3.1.12). It states that certain Testimonial fields are not validated/escaped before being output on pages, enabling Stored XSS for users with contributor role or higher when a specific view is accessed. Affected a...
CVE-2023-6491
Technical details about CVE-2023-6491 (Strong Testimonials) are not provided in the Connected documents. Public information in the Initial Description is present, but no concrete vendor/product/version/root-cause/fix details from connected sources are included. Monitor for updates.
CVE-2024-47362
CVE-2024-47362 is a Broken Access Control vulnerability in WordPress plugin Strong Testimonials (versions
CVE-2023-52123
CVE-2023-52123 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin WPChill Strong Testimonials, affecting version 3.1.10 and earlier. Per NVD, impact is high (C/H/I/H) with CVSS 3.1 base score 8.8. PatchStack documents a lower severity (CVSS 3.1 base 4.3) and notes...
CVE-2023-26013
The CVE-2023-26013 entry concerns the WordPress plugin WPChill Strong Testimonials, affected through stored XSS in versions