Filtered by vendor Wpchill Subscriptions
Filtered by product Strong Testimonials Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-6491 1 Wpchill 1 Strong Testimonials 2024-11-21 4.3 Medium
The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due to an improper capability check on the wpmtst_save_view_sticky function in all versions up to, and including, 3.1.12. This makes it possible for authenticated attackers, with contributor access and above, to modify favorite views.
CVE-2023-52123 1 Wpchill 1 Strong Testimonials 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in WPChill Strong Testimonials.This issue affects Strong Testimonials: from n/a through 3.1.10.
CVE-2023-26013 1 Wpchill 1 Strong Testimonials 2024-11-21 6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WPChill Strong Testimonials plugin <= 3.0.2 versions.
CVE-2020-8549 1 Wpchill 1 Strong Testimonials 2024-11-21 6.1 Medium
Stored XSS in the Strong Testimonials plugin before 2.40.1 for WordPress can result in an attacker performing malicious actions such as stealing session tokens.
CVE-2024-47362 1 Wpchill 1 Strong Testimonials 2024-11-06 4.3 Medium
Missing Authorization vulnerability in WPChill Strong Testimonials allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Strong Testimonials: from n/a through 3.1.16.