Multiple XSS vulnerabilities in Easy Testimonials 3.5.2 and lower, allow remote attackers to inject arbitrary web script or HTML. Successful exploitation allows contributors to inject arbitrary javascript code when admin users access All Testimonials page
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
NVD | CVE-2020-14959 | 22 Jun 202000:15 | – | nvd |
wpexploit | Easy Testimonials < 3.6 - Authenticated Stored Cross-Site Scripting (XSS) | 13 May 202000:00 | – | wpexploit |
CVE | CVE-2020-14959 | 22 Jun 202000:15 | – | cve |
Prion | Design/Logic Flaw | 22 Jun 202000:15 | – | prion |
OpenVAS | WordPress Easy Testimonials Plugin < 3.6 XSS Vulnerability | 13 Apr 202100:00 | – | openvas |
Cvelist | CVE-2020-14959 | 21 Jun 202023:04 | – | cvelist |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo