PT-2022-22993 · WordPress · Testimonial Slider
Nguyen Anh Tien
+1
·
Published
2022-07-28
·
Updated
2022-10-27
·
CVE-2022-35882
CVSS v3.1
4.8
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
GS Testimonial Slider plugin versions 1.9.5 and earlier
GS Testimonial Slider plugin versions 1.9.1 and earlier
Description
The issue is related to an Authenticated Stored Cross-Site Scripting (XSS) vulnerability. This vulnerability can be exploited by an attacker with an author or higher user role.
Recommendations
For GS Testimonial Slider plugin versions 1.9.5 and earlier, update to a version later than 1.9.5 to resolve the issue.
For GS Testimonial Slider plugin versions 1.9.1 and earlier, update to a version later than 1.9.1 to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Testimonial Slider