Strong Testimonials — Vulnerabilities & Security Advisories 12

All 12 CVE vulnerabilities found in Strong Testimonials, with AI-generated Chinese analysis, references, and POCs.

Vendor: Unknown

CVE ID	Title	CVSS	Severity	Published
CVE-2026-3239	Strong Testimonials <= 3.2.21 - Authenticated (Contributor+) Stored Cross-Site Scripting via testimonial_view Shortcode CWE-79	6.4	Medium	2026-04-08
CVE-2026-24957	WordPress Strong Testimonials plugin <= 3.2.20 - Broken Access Control vulnerability CWE-862	8.2^AI	High^AI	2026-02-03
CVE-2025-14426	Strong Testimonials <= 3.2.18 - Missing Authorization to Authenticated (Contributor+) Rating Meta Update CWE-862	4.3	Medium	2025-12-30
CVE-2025-11268	Strong Testimonials <= 3.2.16 - Unauthenticated Arbitrary Shortcode Execution CWE-79	4.3	Medium	2025-11-06
CVE-2025-7367	Strong Testimonials <= 3.2.11 - Authenticated (Author+) Stored Cross-Site Scripting via Custom Fields CWE-79	6.4	Medium	2025-07-15
CVE-2025-26975	WordPress Strong Testimonials plugin <= 3.2.3 - Broken Access Control vulnerability CWE-862	5.3	Medium	2025-02-25
CVE-2024-47362	WordPress Strong Testimonials plugin <= 3.1.16 - Broken Access Control vulnerability CWE-862	4.3	Medium	2024-11-01
CVE-2023-6491	Strong Testimonials <= 3.1.12 - Authenticated(Contributor+) Improper Authorization to Views Modification CWE-284	4.3	Medium	2024-06-07
CVE-2024-3261	Strong Testimonials < 3.1.12 - Contributor+ Stored XSS	5.4	-	2024-04-24
CVE-2023-52123	WordPress Strong Testimonials Plugin <= 3.1.10 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352	4.3	Medium	2024-01-05
CVE-2023-26013	WordPress Strong Testimonials Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS) CWE-79	6.5	Medium	2023-06-16
CVE-2022-4717	Strong Testimonials < 3.0.3 - Contributor+ Stored XSS via Shortcode	5.4	-	2023-02-06

All 12 known CVE vulnerabilities affecting Strong Testimonials with full Chinese analysis, references, and POCs where available.