CVE-2025-8666
- EPSS 0.05%
- Veröffentlicht 25.10.2025 05:31:19
- Zuletzt bearbeitet 27.10.2025 13:20:15
The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions less than, or equal to, 11.6.2 due to insufficient input sanitization and output escaping. This makes it poss...
CVE-2024-35713
- EPSS 0.11%
- Veröffentlicht 08.06.2024 14:15:10
- Zuletzt bearbeitet 21.11.2024 09:20:43
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in UAPP GROUP Testimonial Carousel For Elementor allows Stored XSS.This issue affects Testimonial Carousel For Elementor: from n/a through 10.1....
CVE-2024-2253
- EPSS 0.24%
- Veröffentlicht 30.05.2024 04:15:09
- Zuletzt bearbeitet 21.11.2024 09:09:21
The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via URL values the plugin's carousel widgets in all versions up to, and including, 10.2.1 due to insufficient input sanitization and output escap...
CVE-2024-4858
- EPSS 0.2%
- Veröffentlicht 25.05.2024 03:15:08
- Zuletzt bearbeitet 21.11.2024 09:43:44
The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_testimonials_option_callback' function in versions up to, and including, 10.2.0. This makes ...
CVE-2024-4698
- EPSS 0.59%
- Veröffentlicht 18.05.2024 08:15:08
- Zuletzt bearbeitet 21.11.2024 09:43:24
The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'show_line_text ' and 'slide_button_hover_animation' parameters in versions up to, and including, 10.1.1 due to insufficient input saniti...