Medium severity5.4NVD Advisory· Published Apr 5, 2021· Updated Jun 17, 2026
CVE-2021-24156
CVE-2021-24156
Description
Stored Cross-Site Scripting vulnerabilities in Testimonial Rotator 3.0.3 allow low privileged users (Contributor) to inject arbitrary JavaScript code or HTML without approval. This could lead to privilege escalation
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Testimonial Rotator/Testimonial Rotatordescription
- Range: <=3.0.3
Patches
Vulnerability mechanics
References
2- mega.nz/file/ftVSmRCCnvdExploitThird Party Advisory
- wpscan.com/vulnerability/8b6f4a77-4008-4730-9a91-fa055a8b3e68nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.