Medium severity6.1NVD Advisory· Published Nov 26, 2018· Updated Jun 17, 2026
CVE-2018-19564
CVE-2018-19564
Description
Stored XSS was discovered in the Easy Testimonials plugin 3.2 for WordPress. Three wp-admin/post.php parameters (_ikcf_client and _ikcf_position and _ikcf_other) have Cross-Site Scripting.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2= 3.2+ 1 more
- (no CPE)range: = 3.2
- (no CPE)range: <=3.2
Patches
Vulnerability mechanics
References
1- www.exploit-db.com/exploits/45900/nvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.