Fortinet Discovers WordPress Plugin Testimonials Cross-Site Scripting Vulnerability
Summary
Fortinet's FortiGuard Labs has discovered a stored cross-site scripting (XSS) vulnerability in the WordPress plugin Testimonials developed by Shaped Plugin.
Testimonial is the Best Testimonials Showcase Plugin for WordPress built to display testimonials, reviews or quotes in multiple ways on any page or widget. The plugin has over 10,000 active installations.
A stored XSS vulnerability exists in the version of the plugin 2.1.6. Successful exploitation of this vulnerability would allow an authenticated low-privileged user to inject arbitrary javascript code in the testimonial creation form which is viewed by other users.
Solutions
FortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:WordPress.Plugin.Testimonial.XSS
Released Feb 20, 2020
Users should update the plugin to the latest version (2.2).
Timeline
Fortinet reported the vulnerability to WordPress Plugin Team on January 28, 2020Â
WordPress Plugin Team acknowledged the vulnerability on February 06, 2020Â
Shaped Plugin Team patched the vulnerability on March 25, 2020Â