Vulnerability Details CVE-2020-8549
Stored XSS in the Strong Testimonials plugin before 2.40.1 for WordPress can result in an attacker performing malicious actions such as stealing session tokens.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.4%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- http://packetstormsecurity.com/files/156369/WordPress-Strong-Testimonials-2.40.1-Cross-Site-Scripting.html
- https://github.com/MachoThemes/strong-testimonials/blob/master/changelog.txt
- https://wpvulndb.com/vulnerabilities/10056
- https://www.getastra.com/blog/911/plugin-exploit/stored-xss-vulnerability-found-in-strong-testimonials-plugin/
- https://www.jinsonvarghese.com/stored-xss-vulnerability-in-strong-testimonials-plugin/
- http://packetstormsecurity.com/files/156369/WordPress-Strong-Testimonials-2.40.1-Cross-Site-Scripting.html
- https://github.com/MachoThemes/strong-testimonials/blob/master/changelog.txt
- https://wpvulndb.com/vulnerabilities/10056
- https://www.getastra.com/blog/911/plugin-exploit/stored-xss-vulnerability-found-in-strong-testimonials-plugin/
- https://www.jinsonvarghese.com/stored-xss-vulnerability-in-strong-testimonials-plugin/
Products affected by CVE-2020-8549
-
cpe:2.3:a:wpchill:strong_testimonials:-
-
cpe:2.3:a:wpchill:strong_testimonials:1.16
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.1
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.10
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.11
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.12
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.13
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.14
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.2
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.3
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.4
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.5
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.6
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.7
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.8
-
cpe:2.3:a:wpchill:strong_testimonials:1.16.9
-
cpe:2.3:a:wpchill:strong_testimonials:1.17
-
cpe:2.3:a:wpchill:strong_testimonials:1.17.1
-
cpe:2.3:a:wpchill:strong_testimonials:1.17.2
-
cpe:2.3:a:wpchill:strong_testimonials:1.18
-
cpe:2.3:a:wpchill:strong_testimonials:1.18.1
-
cpe:2.3:a:wpchill:strong_testimonials:1.18.2
-
cpe:2.3:a:wpchill:strong_testimonials:1.18.3
-
cpe:2.3:a:wpchill:strong_testimonials:1.18.4
-
cpe:2.3:a:wpchill:strong_testimonials:1.18.5
-
cpe:2.3:a:wpchill:strong_testimonials:1.19
-
cpe:2.3:a:wpchill:strong_testimonials:1.20
-
cpe:2.3:a:wpchill:strong_testimonials:1.20.1
-
cpe:2.3:a:wpchill:strong_testimonials:1.20.2
-
cpe:2.3:a:wpchill:strong_testimonials:1.21
-
cpe:2.3:a:wpchill:strong_testimonials:1.22
-
cpe:2.3:a:wpchill:strong_testimonials:1.23
-
cpe:2.3:a:wpchill:strong_testimonials:1.25.5
-
cpe:2.3:a:wpchill:strong_testimonials:1.25.6
-
cpe:2.3:a:wpchill:strong_testimonials:1.25.7
-
cpe:2.3:a:wpchill:strong_testimonials:2.0
-
cpe:2.3:a:wpchill:strong_testimonials:2.0.0
-
cpe:2.3:a:wpchill:strong_testimonials:2.0.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.12.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.13
-
cpe:2.3:a:wpchill:strong_testimonials:2.13.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.13.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.13.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.13.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.13.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.14
-
cpe:2.3:a:wpchill:strong_testimonials:2.14.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.14.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.14.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.15
-
cpe:2.3:a:wpchill:strong_testimonials:2.16
-
cpe:2.3:a:wpchill:strong_testimonials:2.16.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.16.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.16.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.16.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.16.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.17
-
cpe:2.3:a:wpchill:strong_testimonials:2.17.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.17.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.17.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.17.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.17.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.18
-
cpe:2.3:a:wpchill:strong_testimonials:2.18.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.19
-
cpe:2.3:a:wpchill:strong_testimonials:2.19.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.19.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.10
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.11
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.12
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.6
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.7
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.8
-
cpe:2.3:a:wpchill:strong_testimonials:2.2.9
-
cpe:2.3:a:wpchill:strong_testimonials:2.20
-
cpe:2.3:a:wpchill:strong_testimonials:2.21
-
cpe:2.3:a:wpchill:strong_testimonials:2.21.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.21.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.22
-
cpe:2.3:a:wpchill:strong_testimonials:2.22.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.22.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.22.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.22.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.22.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.22.6
-
cpe:2.3:a:wpchill:strong_testimonials:2.23
-
cpe:2.3:a:wpchill:strong_testimonials:2.23.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.23.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.24
-
cpe:2.3:a:wpchill:strong_testimonials:2.25
-
cpe:2.3:a:wpchill:strong_testimonials:2.25.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.25.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.26
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.10
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.6
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.7
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.8
-
cpe:2.3:a:wpchill:strong_testimonials:2.26.9
-
cpe:2.3:a:wpchill:strong_testimonials:2.27
-
cpe:2.3:a:wpchill:strong_testimonials:2.27.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.27.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.28.0
-
cpe:2.3:a:wpchill:strong_testimonials:2.28.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.28.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.28.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.28.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.29
-
cpe:2.3:a:wpchill:strong_testimonials:2.29.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.3.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.3.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.3.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.30
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.6
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.7
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.8
-
cpe:2.3:a:wpchill:strong_testimonials:2.30.9
-
cpe:2.3:a:wpchill:strong_testimonials:2.31
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.10
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.6
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.7
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.8
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.9
-
cpe:2.3:a:wpchill:strong_testimonials:2.31.9.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.32
-
cpe:2.3:a:wpchill:strong_testimonials:2.32.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.32.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.32.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.32.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.34
-
cpe:2.3:a:wpchill:strong_testimonials:2.35
-
cpe:2.3:a:wpchill:strong_testimonials:2.36
-
cpe:2.3:a:wpchill:strong_testimonials:2.37
-
cpe:2.3:a:wpchill:strong_testimonials:2.38
-
cpe:2.3:a:wpchill:strong_testimonials:2.38.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.39
-
cpe:2.3:a:wpchill:strong_testimonials:2.39.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.39.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.39.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.4.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.40.0
-
cpe:2.3:a:wpchill:strong_testimonials:2.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.5.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.5.2
-
cpe:2.3:a:wpchill:strong_testimonials:2.5.3
-
cpe:2.3:a:wpchill:strong_testimonials:2.5.4
-
cpe:2.3:a:wpchill:strong_testimonials:2.5.5
-
cpe:2.3:a:wpchill:strong_testimonials:2.5.7
-
cpe:2.3:a:wpchill:strong_testimonials:2.5.8
-
cpe:2.3:a:wpchill:strong_testimonials:2.6
-
cpe:2.3:a:wpchill:strong_testimonials:2.6.1
-
cpe:2.3:a:wpchill:strong_testimonials:2.7
-
cpe:2.3:a:wpchill:strong_testimonials:2.8.1