Vulnerabilities > Testimonial Rotator Project > Testimonial Rotator > 3.0.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-05 | CVE-2021-24156 | Cross-site Scripting vulnerability in Testimonial Rotator Project Testimonial Rotator 3.0.3 Stored Cross-Site Scripting vulnerabilities in Testimonial Rotator 3.0.3 allow low privileged users (Contributor) to inject arbitrary JavaScript code or HTML without approval. | 5.4 |