RSS   Vulnerabilities for 'Testimonial rotator'   RSS

2021-04-05
 
CVE-2021-24156

CWE-79
 

 
Stored Cross-Site Scripting vulnerabilities in Testimonial Rotator 3.0.3 allow low privileged users (Contributor) to inject arbitrary JavaScript code or HTML without approval. This could lead to privilege escalation

 


Copyright 2024, cxsecurity.com

 

Back to Top