PT-2020-20202 · WordPress · Strong Testimonials
Jinson Varghese Behanan
·
Published
2020-02-03
·
Updated
2024-10-29
·
CVE-2020-8549
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Strong Testimonials plugin versions prior to 2.40.1
Description
The issue allows an attacker to perform malicious actions, such as stealing session tokens, by exploiting a Stored XSS vulnerability in the Strong Testimonials plugin for WordPress.
Recommendations
For versions prior to 2.40.1, update to version 2.40.1 or later to resolve the issue.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Strong Testimonials