Strong Testimonials Security Vulnerabilities and Issues — Strong Testimonials CVE List

Lucene search

WpchillStrong Testimonials

6 matches found

CVE•added 2020/02/03 5:15 p.m.•123 views

CVE-2020-8549

Stored XSS in the Strong Testimonials plugin before 2.40.1 for WordPress can result in an attacker performing malicious actions such as stealing session tokens.

6.1CVSS5.9AI score0.00564EPSS

Web

CVE•added 2024/04/24 5:15 a.m.•60 views

CVE-2024-3261

The Strong Testimonials WordPress plugin before 3.1.12 does not validate and escape some of its Testimonial fields before outputting them back in a page/post, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. The attack requires a specific v...

4.8CVSS8AI score0.00204EPSS

Web

CVE•added 2024/06/07 6:15 a.m.•38 views

CVE-2023-6491

The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due to an improper capability check on the wpmtst_save_view_sticky function in all versions up to, and including, 3.1.12. This makes it possible for authenticated attackers, with contributor access and a...

4.3CVSS4.7AI score0.00188EPSS

CVE•added 2023/06/16 9:15 a.m.•37 views

CVE-2023-26013

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WPChill Strong Testimonials plugin

6.5CVSS5.5AI score0.00077EPSS

CVE•added 2024/11/01 3:15 p.m.•37 views

CVE-2024-47362

Missing Authorization vulnerability in WPChill Strong Testimonials allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Strong Testimonials: from n/a through 3.1.16.

8.8CVSS6.4AI score0.00322EPSS

CVE•added 2024/01/05 9:15 a.m.•33 views

CVE-2023-52123

Cross-Site Request Forgery (CSRF) vulnerability in WPChill Strong Testimonials.This issue affects Strong Testimonials: from n/a through 3.1.10.

8.8CVSS8.6AI score0.0007EPSS