High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-28	CVE-2022-23911	Unspecified vulnerability in Accesspressthemes AP Custom Testimonial 1.4.6 The Testimonial WordPress Plugin WordPress plugin before 1.4.7 does not validate and escape the id parameter before using it in a SQL statement when retrieving a testimonial to edit, leading to a SQL Injection network low complexity accesspressthemes	7.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.