Medium severity6.1NVD Advisory· Published Feb 3, 2020· Updated Jun 17, 2026
CVE-2020-8549
CVE-2020-8549
Description
Stored XSS in the Strong Testimonials plugin before 2.40.1 for WordPress can result in an attacker performing malicious actions such as stealing session tokens.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Strong Testimonials plugindescription
- Range: <2.40.1
Patches
Vulnerability mechanics
References
5- packetstormsecurity.com/files/156369/WordPress-Strong-Testimonials-2.40.1-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.getastra.com/blog/911/plugin-exploit/stored-xss-vulnerability-found-in-strong-testimonials-plugin/nvdExploitThird Party Advisory
- www.jinsonvarghese.com/stored-xss-vulnerability-in-strong-testimonials-plugin/nvdExploitThird Party Advisory
- github.com/MachoThemes/strong-testimonials/blob/master/changelog.txtnvdRelease NotesThird Party Advisory
- wpvulndb.com/vulnerabilities/10056nvdThird Party Advisory
News mentions
0No linked articles in our index yet.