Terillion Reviews < 1.2 – Profile Id Field XSS | CVE 2013-2501

Affects Plugins

terillion-reviews

No known fix

References

CVE

CVE-2013-2501

URL

https://packetstormsecurity.com/files/#120730/

URL

https://exchange.xforce.ibmcloud.com/vulnerabilities/82727

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Verified

No

WPVDB ID

01a95241-5d73-480e-a693-0ab12d5325d2

Timeline

Publicly Published

2014-08-01 (about 11 years ago)

Added

2014-08-01 (about 11 years ago)

Last Updated

2019-10-21 (about 6 years ago)

Other

Published

Title

Published

2025-09-29

Title

Any News Ticker <= 3.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2021-03-11

Title

JH 404 Logger <= 1.1 - Unauthenticated Stored Cross-Site Scripting (XSS)

Published

2025-10-19

Title

Headline Analyzer <= 1.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2025-04-04

Title

Piotnet Addons For Elementor <= 2.4.36 - Contributor+ Stored XSS

Published

2014-08-01

Title

Usernoise 3.7.8 - Feedback Submission summary Field XSS