Vulnerabilities > Starkdigital

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-26	CVE-2024-43967	Cross-site Scripting vulnerability in Starkdigital WP Testimonial Widget Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Stark Digital WP Testimonial Widget allows Stored XSS.This issue affects WP Testimonial Widget: from n/a through 3.1. network low complexity starkdigital CWE-79	4.8
2024-08-26	CVE-2024-43966	SQL Injection vulnerability in Starkdigital WP Testimonial Widget Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stark Digital WP Testimonial Widget.This issue affects WP Testimonial Widget: from n/a through 3.1. network low complexity starkdigital CWE-89	7.2
2024-08-21	CVE-2024-7390	Missing Authorization vulnerability in Starkdigital WP Testimonial Widget The WP Testimonial Widget plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the fnSaveTestimonailOrder function in all versions up to, and including, 3.0. network low complexity starkdigital CWE-862	5.3
2023-11-13	CVE-2023-47516	Unspecified vulnerability in Starkdigital Category Post List Widget 1.1/1.2/2.0 Cross-Site Request Forgery (CSRF) vulnerability in Stark Digital Category Post List Widget allows Stored XSS.This issue affects Category Post List Widget: from n/a through 2.0. network low complexity starkdigital	6.1

Vulnerabilities > Starkdigital {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Starkdigital"}]}