Login Sign Up

CVE-2022-46799

7.1 HIGH
Cross-Site Scripting

📋 TL;DR

Unauthenticated reflected cross-site scripting (XSS) vulnerability in the Easy Testimonial Slider and Form WordPress plugin allows attackers to inject malicious scripts via crafted URLs. This affects WordPress sites using plugin versions 1.0.15 and earlier. Attackers can execute arbitrary JavaScript in victims' browsers when they visit malicious links.

💻 Affected Systems

Products:
  • WordPress Easy Testimonial Slider and Form plugin
Versions: <= 1.0.15
Operating Systems: Any OS running WordPress
Default Config Vulnerable: ⚠️ Yes
Notes: All WordPress installations with vulnerable plugin versions are affected regardless of configuration.

📦 What is this software?

Easy Testimonial Slider And Form by I13websolution

View all CVEs affecting Easy Testimonial Slider And Form →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers steal administrator session cookies, take over WordPress admin accounts, install backdoors, deface websites, or redirect visitors to malicious sites.

🟠

Likely Case

Attackers steal user session cookies, perform phishing attacks, or redirect users to malicious content.

🟢

If Mitigated

With proper input validation and output encoding, malicious scripts are neutralized before execution.

🌐 Internet-Facing: HIGH
🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires tricking users into clicking malicious links but requires no authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.0.16 or later

Vendor Advisory: https://patchstack.com/database/vulnerability/easy-testimonial-rotator/wordpress-easy-testimonial-slider-and-form-plugin-1-0-15-cross-site-scripting-xss

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find 'Easy Testimonial Slider and Form'. 4. Click 'Update Now' if available. 5. Alternatively, download latest version from WordPress repository and manually update.

🔧 Temporary Workarounds

Disable vulnerable plugin

all

Temporarily disable the plugin until patched

wp plugin deactivate easy-testimonial-rotator

Web Application Firewall (WAF)

all

Configure WAF to block XSS payloads in URL parameters

🧯 If You Can't Patch

  • Implement Content Security Policy (CSP) headers to restrict script execution
  • Use WordPress security plugins with XSS protection features

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel > Plugins > Easy Testimonial Slider and Form > Version number

Check Version:

wp plugin get easy-testimonial-rotator --field=version

Verify Fix Applied:

Verify plugin version is 1.0.16 or higher in WordPress admin

📡 Detection & Monitoring

Log Indicators:

  • Unusual URL parameters containing script tags or JavaScript in access logs
  • Multiple 404 errors with suspicious parameters

Network Indicators:

  • HTTP requests with script tags in query parameters
  • Referrer headers containing malicious scripts

SIEM Query:

source="wordpress_access.log" AND ("<script" OR "javascript:" OR "onerror=" OR "onload=")

📊 Metadata

CVE ID: CVE-2022-46799
CVSS v3 Score: 7.1 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
CWE: CWE-79
Published: May 8, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-46799, you might also want to check these:

CVE-2021-39199 10.0

CVE-2021-39199 is a critical cross-site scripting (XSS) vulnerability in the remark-html Node.js lib...

Same vulnerability type (CWE-79)
CVE-2021-32671 10.0

This vulnerability in Flarum forum software allows attackers to inject malicious HTML/JavaScript int...

Same vulnerability type (CWE-79)
CVE-2021-32798 10.0

CVE-2021-32798 is a critical vulnerability in Jupyter Notebook that allows malicious notebook files ...

Same vulnerability type (CWE-79)