Filtered by vendor Axelerant
Subscriptions
Filtered by product Testimonials Widget
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-24136 | 1 Axelerant | 1 Testimonials Widget | 2021-03-24 | 5.4 Medium |
Unvalidated input and lack of output encoding in the Testimonials Widget WordPress plugin, versions before 4.0.0, lead to multiple Cross-Site Scripting vulnerabilities, allowing remote attackers to inject arbitrary JavaScript code or HTML via the below parameters: - Author - Job Title - Location - Company - Email - URL |
Page 1 of 1.