Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Strong Testimonials — Vulnerabilities & Security Advisories 12

All 12 CVE vulnerabilities found in Strong Testimonials, with AI-generated Chinese analysis, references, and POCs.

This page documents security vulnerabilities affecting the Strong Testimonials WordPress plugin, categorized by weakness type and associated vendor. It aggregates public reports, advisories, and tracked issues related to this specific software component over a comprehensive historical time range. The collection spans from initial releases through recent updates, ensuring coverage of both legacy and current versions where relevant threats have been identified. Here, visitors can track a vendor's advisories to stay informed about official responses and remediation efforts for disclosed security flaws. Users can also understand a weakness class by examining the common patterns and root causes that lead to these specific security failures within the plugin’s architecture. Additionally, the page allows users to look up a product's vulnerability history to assess the overall security posture and timeline of patches applied over time. This resource serves as a centralized reference for security researchers, WordPress administrators, and developers seeking detailed insights into the known weaknesses of Strong Testimonials. The information is compiled to facilitate better risk assessment and informed decision-making regarding plugin updates and security configurations. By providing a clear overview of past and present vulnerabilities, this page supports proactive maintenance strategies and helps mitigate potential risks associated with unpatched or vulnerable installations. All data presented is intended for informational purposes to aid in the continuous improvement of web application security practices.

Vendor: Unknown

CVE IDTitleCVSSSeverityPublished
CVE-2026-3239 Strong Testimonials <= 3.2.21 - Authenticated (Contributor+) Stored Cross-Site Scripting via testimonial_view Shortcode CWE-79 6.4 Medium2026-04-08
CVE-2026-24957 WordPress Strong Testimonials plugin <= 3.2.20 - Broken Access Control vulnerability CWE-862 6.5 Medium2026-02-03
CVE-2025-14426 Strong Testimonials <= 3.2.18 - Missing Authorization to Authenticated (Contributor+) Rating Meta Update CWE-862 4.3 Medium2025-12-30
CVE-2025-11268 Strong Testimonials <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution CWE-79 4.3 Medium2025-11-06
CVE-2025-7367 Strong Testimonials <= 3.2.11 - Authenticated (Author+) Stored Cross-Site Scripting via Custom Fields CWE-79 6.4 Medium2025-07-15
CVE-2025-26975 WordPress Strong Testimonials plugin <= 3.2.3 - Broken Access Control vulnerability CWE-862 5.3 Medium2025-02-25
CVE-2024-47362 WordPress Strong Testimonials plugin <= 3.1.16 - Broken Access Control vulnerability CWE-862 4.3 Medium2024-11-01
CVE-2023-6491 Strong Testimonials <= 3.1.12 - Authenticated(Contributor+) Improper Authorization to Views Modification CWE-284 4.3 Medium2024-06-07
CVE-2024-3261 Strong Testimonials < 3.1.12 - Contributor+ Stored XSS 5.4 -2024-04-24
CVE-2023-52123 WordPress Strong Testimonials Plugin <= 3.1.10 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 4.3 Medium2024-01-05
CVE-2023-26013 WordPress Strong Testimonials Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS) CWE-79 6.5 Medium2023-06-16
CVE-2022-4717 Strong Testimonials < 3.0.3 - Contributor+ Stored XSS via Shortcode 5.4 -2023-02-06

All 12 known CVE vulnerabilities affecting Strong Testimonials with full Chinese analysis, references, and POCs where available.