cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-7390,https://securityvulnerability.io/vulnerability/CVE-2024-7390,Unauthorized Modification of Testimonials Possible in WP Testimonial Widget Plugin,"The WP Testimonial Widget plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnSaveTestimonailOrder function in all versions up to, and including, 3.0. This makes it possible for unauthenticated attackers to change the order of testimonials.",Wordpress,WP Testimonial Widget,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,2024-08-21T05:30:20.660Z,0
CVE-2022-4750,https://securityvulnerability.io/vulnerability/CVE-2022-4750,WP Responsive Testimonials Slider And Widget <= 1.5 - Contributor+ Stored XSS,"The WP Responsive Testimonials Slider And Widget WordPress plugin through 1.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks",Wordpress,WP Responsive Testimonials Slider And Widget,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-02-21T08:50:45.322Z,0