Vulnerability Details CVE-2022-44741
Cross-Site Request Forgery (CSRF) vulnerability leading to Cross-Site Scripting (XSS) in David Anderson Testimonial Slider plugin <= 1.3.1 on WordPress.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 20.8%
CVSS Severity
CVSS v3 Score 6.1
References
- https://patchstack.com/database/vulnerability/testimonial-slider/wordpress-testimonial-slider-plugin-1-3-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve
- https://wordpress.org/plugins/testimonial-slider/
- https://patchstack.com/database/vulnerability/testimonial-slider/wordpress-testimonial-slider-plugin-1-3-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve
- https://wordpress.org/plugins/testimonial-slider/
Products affected by CVE-2022-44741
-
cpe:2.3:a:slidervilla:testimonial_slider:1.0.1
-
cpe:2.3:a:slidervilla:testimonial_slider:1.1
-
cpe:2.3:a:slidervilla:testimonial_slider:1.1.1
-
cpe:2.3:a:slidervilla:testimonial_slider:1.1.2
-
cpe:2.3:a:slidervilla:testimonial_slider:1.1.3
-
cpe:2.3:a:slidervilla:testimonial_slider:1.1.4
-
cpe:2.3:a:slidervilla:testimonial_slider:1.2
-
cpe:2.3:a:slidervilla:testimonial_slider:1.2.1
-
cpe:2.3:a:slidervilla:testimonial_slider:1.2.3
-
cpe:2.3:a:slidervilla:testimonial_slider:1.2.5
-
cpe:2.3:a:slidervilla:testimonial_slider:1.3.0