CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-19564

Stored XSS was discovered in the Easy Testimonials plugin 3.2 for WordPress. Three wp-admin/post.php parameters (_ikcf_client and _ikcf_position and _ikcf_other) have Cross-Site Scripting.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://www.exploit-db.com/exploits/45900/
https://www.exploit-db.com/exploits/45900/

Products affected by CVE-2018-19564

Goldplugins » Easy Testimonials » Version: 3.2

cpe:2.3:a:goldplugins:easy_testimonials:3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19564

Products

Pricing

Contact Us