Authenticated (editor or higher user role) Cross-Site Scripting (XSS) vulnerability in Web-Settler Testimonial Slider – Free Testimonials Slider Plugin (WordPress plugin) via parameters mpsp_posts_bg_color, mpsp_posts_description_color, mpsp_slide_nav_button_color.
History

Thu, 20 Feb 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published:

Updated: 2025-02-20T20:28:44.030Z

Reserved: 2021-07-19T00:00:00.000Z

Link: CVE-2021-36851

cve-icon Vulnrichment

Updated: 2024-08-04T01:01:59.753Z

cve-icon NVD

Status : Modified

Published: 2022-04-04T20:15:09.487

Modified: 2024-11-21T06:14:11.787

Link: CVE-2021-36851

cve-icon Redhat

No data.