CVE-2022-40213

Name of the Vulnerable Software and Affected Versions GS Testimonial Slider plugin versions prior to 1.9.7

Description The issue concerns multiple authenticated Stored Cross-Site Scripting (XSS) vulnerabilities. This means that an attacker with contributor or higher privileges can inject malicious scripts into the application, which are then stored and executed by the application, potentially leading to unauthorized actions or data theft.

Recommendations For GS Testimonial Slider plugin versions prior to 1.9.7, update to version 1.9.7 or later to resolve the issue.