Lucene search
China National Vulnerability DatabaseCNVD-2021-92965HistoryNov 21, 2021 - 12:00 a.m.
WordPress Testimonial Plugin Cross-Site Scripting Vulnerability
2021-11-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
wordpress
testimonial plugin
cross-site scripting
vulnerability
data validation
javascript
EPSS
0.001
Percentile
21.4%
WordPress is the WordPress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL.The WordPress Testimonial plugin has a cross-site scripting vulnerability in versions prior to 1.6.0, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
Related
wpvulndb
wpvulndb
Testimonial Builder < 1.6.0 - Admin+ Stored Cross-Site Scripting
2021-10-13 00:00:00
nvd
nvd
CVE-2021-24598
2021-11-17 11:15:07
wpexploit
wpexploit
Testimonial Builder < 1.6.0 - Admin+ Stored Cross-Site Scripting
2021-10-13 00:00:00
patchstack
patchstack
cve
cve
CVE-2021-24598
2021-11-17 11:15:07
cvelist
cvelist
prion
prion
Cross site scripting
2021-11-17 11:15:00