[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9Hpcgg1XIpo7ezVosxQXoG8I0lGWBfIBgVTFciFfIZs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":66,"crawl_stats":36,"alternatives":73,"analysis":173,"fingerprints":296},"elfsight-testimonials-slider","Elfsight Testimonials Slider","1.0.1","elfsight","https:\u002F\u002Fprofiles.wordpress.org\u002Felfsight\u002F","\u003Ch4>Introduction\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Felfsight.com\u002Ftestimonials-slider-widget\u002F?utm_source=markets&utm_medium=wordpress-org&utm_content=description&utm_campaign=testimonials-slider\" rel=\"nofollow ugc\">Elfsight Testimonials Slider\u003C\u002Fa> plugin is a simple and easy-to-use tool for those who want to display customers’ testimonials on the website in the most effective way. Just install it to any page of your website to show positive interaction with clients and improve your business credibility.\u003C\u002Fp>\n\u003Cp>Try live demo: \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Ftestimonials-slider-widget\u002Fwordpress\u002F?utm_source=markets&utm_medium=wordpress-org&utm_content=description&utm_campaign=testimonials-slider\" rel=\"nofollow ugc\">https:\u002F\u002Felfsight.com\u002Ftestimonials-slider-widget\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Increase your customer trust and strengthen your reputation, displaying reliable and trustworthy testimonials. Make positive user experiencу act as emotional persuading to increase conversion of your website.\u003C\u002Fp>\n\u003Ch4>Benefits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Make your testimonials really trustworthy by using names, photos, logos and links.\u003C\u002Fli>\n\u003Cli>Achieve better interaction with your clients showing real user experience of your product.\u003C\u002Fli>\n\u003Cli>Improve your conversion rate and attract new reviews by social proof of trust.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>Our Testimonials Slider plugin is extremely easy to install and it doesn’t require coding skills. Yet it’s reach in one-click-available features, which will help you in your business needs.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>A minimum set of fields to send a feedback: name, email, phone, and message\u003C\u002Fli>\n\u003Cli>Hide the fields you don’t like to show\u003C\u002Fli>\n\u003Cli>Set your own field labels\u003C\u002Fli>\n\u003Cli>Specify a placeholder for any field, for example to demonstrate the required format\u003C\u002Fli>\n\u003Cli>Choose the fields to make required\u003C\u002Fli>\n\u003Cli>2 predefined layouts: inline to be added to the page body, and floating to follow your visitor’s scroll\u003C\u002Fli>\n\u003Cli>Order the fields in the form the way you like\u003C\u002Fli>\n\u003Cli>Horizontal layout is set automatically adjusting to the width of your form\u003C\u002Fli>\n\u003Cli>Works and looks perfectly on mobile devices\u003C\u002Fli>\n\u003Cli>Seamless design which suits 99% sites right out of the box\u003C\u002Fli>\n\u003Cli>5 visual field styles included: classic, flat, material, classic rounded, flat rounded\u003C\u002Fli>\n\u003Cli>Set any form width\u003C\u002Fli>\n\u003Cli>Set the title above the form\u003C\u002Fli>\n\u003Cli>Place any text you need before the form\u003C\u002Fli>\n\u003Cli>Pin a picture, a logo or a photo over your form\u003C\u002Fli>\n\u003Cli>Editable label  of the Submit button\u003C\u002Fli>\n\u003Cli>Set a text to accompany successful submission of the message\u003C\u002Fli>\n\u003Cli>All data entered to the form is saved in progress\u003C\u002Fli>\n\u003Cli>Google reCAPTCHA is here  to give your form protection from spam and bots\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Installation in 1-2-3\u003C\u002Fh4>\n\u003Cp>This plugin is unbelievably easy to install. After downloading the plugin zip, you need to install it on your website, create and configure a plugin, and copy-paste its code into any page or your website template.\u003C\u002Fp>\n\u003Cp>To further enhance your website’s functionality, Elfsight offers a variety of other useful widgets. For example, you can integrate the \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Finstagram-feed-instashow\u002Fwordpress\u002F?utm_source=markets&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_term=common&utm_content=description\" rel=\"nofollow ugc\">Instagram Feed\u003C\u002Fa> to showcase your social media visuals, the \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Flinkedin-feed-widget\u002Fwordpress\u002F?utm_source=markets&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_term=common&utm_content=description\" rel=\"nofollow ugc\">LinkedIn Feed\u003C\u002Fa> to display professional updates, or the \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Fgoogle-reviews-widget\u002Fwordpress\u002F?utm_source=markets&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_term=common&utm_content=description\" rel=\"nofollow ugc\">Google Reviews\u003C\u002Fa> widget to build trust by featuring customer feedback. Looking for an all-in-one solution? The \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Fall-in-one-reviews-widget\u002Fwordpress\u002F?utm_source=markets&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_term=common&utm_content=description\" rel=\"nofollow ugc\">All-in-one Reviews\u003C\u002Fa> widget consolidates reviews from different platforms in one place. You can also enable instant communication through the \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Fwhatsapp-chat-widget\u002Fwordpress\u002F?utm_source=markets&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_term=common&utm_content=description\" rel=\"nofollow ugc\">WhatsApp Chat\u003C\u002Fa>, or keep your audience informed with the \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Fevent-calendar-widget\u002Fwordpress\u002F?utm_source=markets&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_term=common&utm_content=description\" rel=\"nofollow ugc\">Event Calendar\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>See more cool \u003Ca href=\"https:\u002F\u002Felfsight.com\u002Fwordpress-plugins\u002F?utm_source=markets&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_term=common&utm_content=description\" rel=\"nofollow ugc\">WordPress plugins\u003C\u002Fa> by Elfsight for your website.\u003C\u002Fp>\n","Level up your website credibility with trustworthy testimonials",200,3793,0,"2025-09-19T06:53:00.000Z","6.8.5","5.0","",[19,20,21,22,23],"testimonials","testimonials-plugin","testimonials-slider","testimonials-slider-plugin","testimonials-widget","https:\u002F\u002Felfsight.com\u002Ftestimonials-slider-widget\u002Fwordpress\u002F?utm_source=portals&utm_medium=wordpress-org&utm_campaign=testimonials-slider&utm_content=plugin-site","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Felfsight-testimonials-slider.1.0.1.zip",47,3,"2025-03-31 00:00:00","2026-03-15T15:16:48.613Z",[31,45,56],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-31584","elfsight-testimonials-slider-missing-authorization","Elfsight Testimonials Slider \u003C= 1.0.1 - Missing Authorization","The WordPress Testimonials Slider plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.0.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform an unauthorized action.",null,"\u003C=1.0.1","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2025-04-08 18:15:22",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F118eedee-3816-49e3-b924-f4ed67eede3e?source=api-prod",{"id":46,"url_slug":47,"title":48,"description":49,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":50,"cvss_vector":51,"vuln_type":52,"published_date":28,"updated_date":53,"references":54,"days_to_patch":36},"CVE-2025-31587","elfsight-testimonials-slider-authenticated-administrator-stored-cross-site-scripting","Elfsight Testimonials Slider \u003C= 1.0.1 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Elfsight Testimonials Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only impacts multi-site installations and installations where unfiltered_html has been disabled.",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-04-08 18:14:25",[55],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1f97d70f-213a-4417-8ef4-94688ed4fd80?source=api-prod",{"id":57,"url_slug":58,"title":59,"description":60,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":61,"vuln_type":62,"published_date":28,"updated_date":63,"references":64,"days_to_patch":36},"CVE-2025-31588","elfsight-testimonials-slider-cross-site-request-forgery-to-settings-update","Elfsight Testimonials Slider \u003C= 1.0.1 - Cross-Site Request Forgery to Settings Update","The WordPress Testimonials Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.1. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to update the plugin's settings granted they can trick a site administrator into performing an action such as clicking on a link.","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-04-08 18:12:16",[65],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F4f530fa1-439f-49c8-850b-96454b9ba7a7?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":67,"total_installs":68,"avg_security_score":69,"avg_patch_time_days":70,"trust_score":71,"computed_at":72},4,5240,87,30,85,"2026-04-04T05:30:34.237Z",[74,99,118,138,155],{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":94,"download_link":95,"security_score":96,"vuln_count":97,"unpatched_count":13,"last_vuln_date":98,"fetched_at":29},"strong-testimonials","Strong Testimonials","3.2.22","WP Chill","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpchill\u002F","\u003Ch3>An easy-to-use testimonial plugin to collect and show customer feedback in WordPress\u003C\u002Fh3>\n\u003Cp>Easily collect and publish testimonials in just a few steps. Packed with flexible features refined over the years, perfect for beginners and pros alike!\u003C\u002Fp>\n\u003Ch4>SEE HOW EASY IT IS TO GET STARTED WITH STRONG TESTIMONIALS\u003C\u002Fh4>\n\u003Ch3>Creating your first testimonials collection form\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F_DmoHH6iE4w?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent&listType=playlist&list=PLM2tOjfhVrZcgMyoeC_M7yUii1QJW8nfH\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>Displaying your testimonials\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FzIb0RQv2-pY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent&listType=playlist&list=PLM2tOjfhVrZcgMyoeC_M7yUii1QJW8nfH\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>Premium features only available in Strong Testimonials – Paid version:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Ftestimonial-importer\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Import+reviews\" rel=\"nofollow ugc\">Import reviews from external sources\u003C\u002Fa>: With our dedicated 3-rd party importer, you can now automate importing, managing, and displaying your testimonials from\u003Cbr \u002F>\nGoogle, Facebook, Booking, Airbnb, Yelp, Trustpilot, Capterra, and G2.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Fcustom-fields-2\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Custom+form+fields\" rel=\"nofollow ugc\">Custom Testimonial Collection Form Fields\u003C\u002Fa>: Easily assign custom fields to a testimonial view if you want to add extra fields to your testimonial submission forms and optionally display this alongside testimonials on your website.\u003Cbr \u002F>\nThe perfect example is with a car review website. Using the Custom Fields extension, you can gather detailed testimonials that include information such as car manufacturer, model, and horsepower.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Fcreating-multiple-forms\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Multiple+forms\" rel=\"nofollow ugc\">Multiple Testimonial Collection Forms\u003C\u002Fa>: You can now create multiple forms to collect testimonials from your website visitors and customers. You can easily create new forms to gather testimonials for different types of products on your website. There is no limit to the number of forms you can create or use.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Ffields-reordering\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Advanced+views\" rel=\"nofollow ugc\">Advanced Views\u003C\u002Fa>: Easily define the display order of your testimonial fields. Re-order the name, image, URL, and testimonial content fields through drag & drop.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Fproperties\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Properties\" rel=\"nofollow ugc\">Properties\u003C\u002Fa>: If you are not a fan of calling your product reviews testimonials, then use this extension to replace the default text (testimonials) with another one such as reviews or ratings.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Fadding-spam-control-to-your-forms\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Captcha\" rel=\"nofollow ugc\">Captcha anti-spam form Protection\u003C\u002Fa>: Protection for spam is something all websites need.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Fpro-templates\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Templates\" rel=\"nofollow ugc\">Templates\u003C\u002Fa>: Beautifully designed & pixel-perfect templates, ready to use to showcase your testimonials. Don’t lose clients with a poor design.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Finfinite-scroll\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Infinite+scroll\" rel=\"nofollow ugc\">Infinite Scroll\u003C\u002Fa>: Using this extension you can control the number of testimonials that are visible on a pages first load. As the user starts scrolling down the page, more testimonials are brought into view using a continuous loading animation.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fkb\u002Fenhanced-emails\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=Enhanced+emails\" rel=\"nofollow ugc\">Enhanced emails\u003C\u002Fa>: Send a thank you email to your client once their testimonial is approved. Increase brand loyalty by showing you really care about your clients. Keep your clients engaged and increase your chances of selling more.\u003C\u002Fli>\n\u003Cli>Priority email support.\u003C\u002Fli>\n\u003Cli>Support and updates for 12 months.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fstrongtestimonials.com\u002Fpricing\u002F?utm_source=wordpress.org&utm_medium=link&utm_campaign=description&utm_term=ST+pro\" rel=\"nofollow ugc\">Learn more about Strong Testimonials – Paid version .\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>About the testimonials style\u003C\u002Fh3>\n\u003Cp>This plugin provides a few designs with only basic style options for background color and font color. Everything else will be inherited from your theme.\u003C\u002Fp>\n\u003Cp>Some templates have light & dark versions and other options. If you want to customize things like fonts, margins and borders, you will need custom CSS.\u003C\u002Fp>\n\u003Ch3>Testimonial Submission Form\u003C\u002Fh3>\n\u003Cp>This plugin provides one form with custom fields. Customize the form by adding or removing fields and changing properties like the order, label, and placeholder.\u003C\u002Fp>\n\u003Cp>Send custom notification emails to multiple admins.\u003C\u002Fp>\n\u003Cp>Submit the form via Ajax for use with plugins like \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpopup-maker\u002F\" rel=\"ugc\">Popup Maker\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Displaying Testimonials\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Everything happens in a View\u003C\u002Fstrong>. Instead of learning multiple shortcodes with dozens of options, a View contains all the options in a simple, intuitive editor that no other testimonial plugin has.\u003C\u002Fp>\n\u003Cp>Create unlimited views. For example, one view for a form, another for a static grid, another for a slideshow, and so on.\u003C\u002Fp>\n\u003Cp>Display a view using a shortcode or the widget.\u003C\u002Fp>\n\u003Cp>A variety of templates are included that work well in most themes.\u003C\u002Fp>\n\u003Cp>For ultimate control and seamless integration, copy any template to your theme and customize it.\u003C\u002Fp>\n\u003Cp>The template function will add a view to your custome theme templates:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php if ( function_exists( 'strong_testimonials_view' ) ) {\n    strong_testimonials_view( $id );\n} ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Privacy and GDPR\u003C\u002Fh3>\n\u003Cp>By default, this plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>does not store any user or visitor data,\u003C\u002Fli>\n\u003Cli>does not send any data to remote servers, act as a service or embed content,\u003C\u002Fli>\n\u003Cli>does not edit the comments form in any way.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin also prevents displaying email addresses in your testimonials on the front end.\u003C\u002Fp>\n\u003Cp>However, this plugin provides features that may involve private data.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>If you use the testimonial submission form, the data collected on that form will be stored in your database.\u003C\u002Fli>\n\u003Cli>If you enable the administrator notification email upon new testimonial submission, the data collected on your form, at your selection, may be included in that notification email.\u003C\u002Fli>\n\u003Cli>If you enable comments on testimonials, the plugin will use your theme’s single post template and comment form.\u003C\u002Fli>\n\u003Cli>If you embed third-party posts such as Twitter, YouTube and FaceBook in your testimonials, you will be agreeing to the Terms of Use of those third-party sites.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>3rd party or external service disclaimer\u003C\u002Fh3>\n\u003Cp>The plugin connects to our website through an API call (https:\u002F\u002Fstrongtestimonials\u002Fwp-json\u002Fmt\u002Fv1\u002Fget-all-extensions) in order to request a list of available extensions.\u003C\u002Fp>\n\u003Cp>IT DOES NOT SEND ANY DATA NOR DO WE COLLECT INFORMATION FROM THE REQUEST\u003C\u002Fp>\n\u003Cp>Our privacy policy can be found at this URL https:\u002F\u002Fstrongtestimonials.com\u002Fprivacy-policy\u002F\u003C\u002Fp>\n","An easy-to-use testimonial plugin to collect and show customer feedback in WordPress",90000,4843919,96,611,"2026-02-26T10:04:00.000Z","6.9.4","5.2","5.6",[91,92,93,21],"star-ratings","testimonial-form","testimonial-plugin","https:\u002F\u002Fstrongtestimonials.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstrong-testimonials.3.2.22.zip",92,14,"2025-12-29 00:00:00",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":11,"downloaded":107,"rating":108,"num_ratings":27,"last_updated":109,"tested_up_to":15,"requires_at_least":89,"requires_php":17,"tags":110,"homepage":114,"download_link":115,"security_score":108,"vuln_count":116,"unpatched_count":13,"last_vuln_date":117,"fetched_at":29},"bws-testimonials","Testimonials by BestWebSoft","1.0.8","bestweblayout","https:\u002F\u002Fprofiles.wordpress.org\u002Fbestweblayout\u002F","\u003Cp>Simple plugin which helps to create and add customer testimonials to WordPress website posts, pages, and widgets. Display testimonials using shortcode, widget or PHP function.\u003C\u002Fp>\n\u003Cp>Show what other people are saying about your business to generate more sales!\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdemo-testimonials-for-wordpress\u002F?ref=readme\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fy-9_ThXTUS8?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>GDPR Compliant\u003C\u002Fli>\n\u003Cli>Add testimonials form via shortcode\u003C\u002Fli>\n\u003Cli>Add unlimited number of testimonials\u003C\u002Fli>\n\u003Cli>Add testimonials block via shortcode\u003C\u002Fli>\n\u003Cli>Add testimonials widget\u003C\u002Fli>\n\u003Cli>Add slider with testimonials\u003C\u002Fli>\n\u003Cli>Compatible with \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F?k=50392a4147eefdfb1d4f7a754ece974c\" rel=\"nofollow ugc\">reCaptcha\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Compatible with \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Frating\u002F?k=15c9ee1f62b49ee24460cad261e745a8\" rel=\"nofollow ugc\">Rating\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Compatible with \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fsender\u002F?k=b147786efc846e1b8af4f4161a07bd16\" rel=\"nofollow ugc\">Sender\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Select the one who can submit new testimonials:\n\u003Cul>\n\u003Cli>All users\u003C\u002Fli>\n\u003Cli>Logged in users\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Customize testimonials additional info:\n\u003Cul>\n\u003Cli>Author\u003C\u002Fli>\n\u003Cli>Company name\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Set the number of testimonials to display\u003C\u002Fli>\n\u003Cli>Change featured image size and its dimensions\u003C\u002Fli>\n\u003Cli>Set the default testimonials sorting order by:\n\u003Cul>\n\u003Cli>ID\u003C\u002Fli>\n\u003Cli>Title\u003C\u002Fli>\n\u003Cli>Date added\u003C\u002Fli>\n\u003Cli>Random\u003C\u002Fli>\n\u003Cli>ASC (ascending order from lowest to highest values)\u003C\u002Fli>\n\u003Cli>DESC (descending order from highest to lowest values)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with latest WordPress version\u003C\u002Fli>\n\u003Cli>Incredibly simple settings for fast setup without modifying code\u003C\u002Fli>\n\u003Cli>Detailed step-by-step documentation and videos\u003C\u002Fli>\n\u003Cli>Multilingual and RTL ready\u003Cbr \u002F>\nIf you have a feature suggestion or idea you’d like to see in the plugin, we’d love to hear about it! \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">Suggest a Feature\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Documentation & Videos\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Ftestimonials\u002Ftestimonials-user-guide\u002F\" rel=\"nofollow ugc\">[Doc] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Fhow-to-install-a-wordpress-product\u002Fhow-to-install-a-wordpress-plugin\u002F\" rel=\"nofollow ugc\">[Doc] Installation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=YMPuEmLELfk\" rel=\"nofollow ugc\">[Video] Installation Instruction\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Help & Support\u003C\u002Fh4>\n\u003Cp>Visit our Help Center if you have any questions, our friendly Support Team is happy to help – \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fsupport.bestwebsoft.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Hungarian (hu_HU) (thanks to \u003Ca href=\"mailto:solarside09@gmail.com\" rel=\"nofollow ugc\">Peter Aprily\u003C\u002Fa> www.aprily.com)\u003C\u002Fli>\n\u003Cli>Russian (ru_RU)\u003C\u002Fli>\n\u003Cli>Ukrainian (uk)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Some of these translations are not complete. We are constantly adding new features which should be translated. If you would like to create your own language pack or update the existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">the text of PO and MO files\u003C\u002Fa> to \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">BestWebSoft\u003C\u002Fa> and we’ll add it to the plugin. You can download the latest version of the program for work with PO and MO \u003Ca href=\"https:\u002F\u002Fwww.poedit.net\u002Fdownload.php\" rel=\"nofollow ugc\">files Poedit\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fupdater\u002F?k=91123f9d92aeccd5ae253904a08c8c24\" rel=\"nofollow ugc\">Updater\u003C\u002Fa> – Automatically check and update WordPress website core with all installed plugins and themes to the latest versions.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F?k=50392a4147eefdfb1d4f7a754ece974c\" rel=\"nofollow ugc\">reCaptcha\u003C\u002Fa> – Protect WordPress website forms from spam entries with reCAPTCHA.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Frating\u002F?k=15c9ee1f62b49ee24460cad261e745a8\" rel=\"nofollow ugc\">Rating\u003C\u002Fa> – Add rating plugin to your WordPress website to receive feedback from your customers.\u003C\u002Fli>\n\u003C\u002Ful>\n","Add testimonials and feedbacks from your customers to WordPress website posts, pages, and widgets.",21183,100,"2025-06-12T09:05:00.000Z",[111,112,113,19,20],"add-testimonials","author-data","company-data","https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Ftestimonials\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbws-testimonials.1.0.8.zip",1,"2017-04-12 00:00:00",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":13,"num_ratings":13,"last_updated":128,"tested_up_to":129,"requires_at_least":88,"requires_php":130,"tags":131,"homepage":136,"download_link":137,"security_score":71,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"video-testimonial-slider","Video Testimonial slider","1.1","Sumanta","https:\u002F\u002Fprofiles.wordpress.org\u002Fkaka2\u002F","\u003Cp>Shortcode 👉 [vts_slider] 👈\u003C\u002Fp>\n\u003Cp>Best video Testimonial Slider plugin for WordPress website.\u003C\u002Fp>\n\u003Cp>You also get to customize the testimonials' Star review background color, Video play buttin Color. Set number of word display in quote.\u003C\u002Fp>\n\u003Ch3>🏆 Features of The Video Testimonial Slider\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Swiper Slider\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Star review background color change\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Video play buttin Color change\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>You can change number of word display in quote\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2 Easy Steps to Using Video Testimonial Slider Plugin\u003C\u002Fh3>\n\u003Cp>When you have installed the plugin and are ready to display your testimonials.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Add all the members that you want to display along with all the necessary fields and profile images.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Step1: Title or name of the user\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Step2: Testimonial content, which is the user's comments or quote\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Step3: Designation of user\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Step4: Country of user that display flag on the image corner\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Step5: Star Rating, You can set 1 to 5\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Step6: Video URL, You need youtube embed video url (ex: https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FppawFI1u6Po)\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Step5: Featured Image, User image\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>2. Click on testimonial then Settings. Set your Star review background color, Set Video play buttin Color. Then just copy the shortcode and paste it on the page or post.\u003C\u002Fp>\n\u003Ch3>🏆 Available Testimonial Fields\u003C\u002Fh3>\n\u003Cp>The following are the fields that this plugin allows you to have on your testimonials:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Title or name of the user\u003C\u002Fli>\n\u003Cli>The profile image of the user\u003C\u002Fli>\n\u003Cli>Testimonial content, which is the user's comments\u003C\u002Fli>\n\u003Cli>Designation field\u003C\u002Fli>\n\u003Cli>Country flag option\u003C\u002Fli>\n\u003Cli>Star Rating\u003C\u002Fli>\n\u003Cli>Video URL\u003C\u002Fli>\n\u003C\u002Ful>\n","Video Testimonial Slider plugin for WordPress website. Using plugin to display client Review and Testimonial with video popup through shortcode.",40,1543,"2023-02-16T05:37:00.000Z","6.1.10","7.2",[132,133,134,19,135],"testimonial","testimonial-showcase","testimonial-slider","video-testimonials-slider","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fvideo-testimonial-slider\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvideo-testimonial-slider.zip",{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":70,"downloaded":146,"rating":108,"num_ratings":116,"last_updated":147,"tested_up_to":148,"requires_at_least":149,"requires_php":17,"tags":150,"homepage":153,"download_link":154,"security_score":71,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"ig-testimonials","IG Testimonials","1.8","iografica","https:\u002F\u002Fprofiles.wordpress.org\u002Fiografica\u002F","\u003Cp>\u003Cstrong>IG Testimonials\u003C\u002Fstrong> is a clean, free and simply WordPress plugin for adding testimonials to your theme, using a shortcode or a widget.\u003C\u002Fp>\n\u003Ch4>IG Testimonials includes:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Testimonial custom post type.\u003C\u002Fli>\n\u003Cli>Testimonial categories.\u003C\u002Fli>\n\u003Cli>Testimonials slider, a responsive and touch ready testimonials carousel.\u003C\u002Fli>\n\u003Cli>Testimonials widget to show your testimonials carousel (you can select the category to display, set up the carousel settings and more).\u003C\u002Fli>\n\u003Cli>The settings page to set up testimonial image dimensions, carousel settings and more.\u003C\u002Fli>\n\u003Cli>A set of shortcodes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With IG Testimonials you can create your testimonials’s page and display your testimonials thanks to the shortcode included, you can also show your testimonials as a carousel selecting the categories that you want to show.\u003Cbr \u002F>\nIG Testimonials works like a charm with all our themes but also with others WordPress themes thanks to its simplicity and to the clean design.\u003C\u002Fp>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.iograficathemes.com\u002Fdocumentation\u002Fig-testimonials\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – Read the plugin documentation.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Any idea or suggestion?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fiograficathemes.uservoice.com\" rel=\"nofollow ugc\">Submit your idea\u003C\u002Fa> – Send us your feedback and suggestions.\u003C\u002Fli>\n\u003C\u002Ful>\n","IG Testimonials is a clean and easy-to-use testimonials plugin for WordPress.",3783,"2016-12-30T21:35:00.000Z","4.7.32","3.1",[19,151,152,23],"testimonials-carousel","testimonials-shortcode","http:\u002F\u002Fwww.iograficathemes.com\u002Fdownloads\u002Fig-testimonials","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fig-testimonials.zip",{"slug":156,"name":157,"version":158,"author":159,"author_profile":160,"description":161,"short_description":162,"active_installs":163,"downloaded":164,"rating":108,"num_ratings":116,"last_updated":165,"tested_up_to":148,"requires_at_least":166,"requires_php":17,"tags":167,"homepage":171,"download_link":172,"security_score":71,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"simple-wp-testimonials","Simple WP Testimonials","1.0.0","Deepak Sharma","https:\u002F\u002Fprofiles.wordpress.org\u002Fdeepaksharma\u002F","\u003Cp>Simple WP Testimonials is an easy to use plugin that allows admin to add Testimonials to the sidebar, as a widget, or to embed them into a Page or Post using the shortcode. The Simple WP Testimonials plugin also allows you to insert a list of all Testimonials. Simple Testimonials allows you to include an image with each testimonial – this is a great feature for adding a photo of the testimonial author.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Simple & Flat Design.\u003C\u002Fli>\n\u003Cli>HTML5 & CSS3.\u003C\u002Fli>\n\u003Cli>Using Custom Post Type – Testimonial.\u003C\u002Fli>\n\u003Cli>Shortcode for “Testimonial List”.\u003C\u002Fli>\n\u003Cli>Testimonial Slider Widgets. \u003C\u002Fli>\n\u003Cli>Horizontal and Vertical Slide\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Shortcode :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>You can Add testimonial Author Name, Testimonial Author Destination, Author Youtube Video in Admin site and Show the Testimonials List using below shortcodes :\u003C\u002Fli>\n\u003Cli>Default Shortcode [testimonials].\u003C\u002Fli>\n\u003Cli>If You Show Testimonials Title than Add Shortcode in Page [testimonials title=”yes”]\u003C\u002Fli>\n\u003Cli>If You Show Author Destination than Add Shortcode in Page [testimonials destination=”yes”]\u003C\u002Fli>\n\u003Cli>If You Show Author Youtube Video than Add Shortcode in Page [testimonials video=”yes”]\u003C\u002Fli>\n\u003C\u002Ful>\n","Simple WP Testimonials is a plugin that allows you to manage and display testimonials for your blog.",20,2398,"2015-04-19T08:34:00.000Z","3.0",[168,169,19,23,170],"responsive","reviews","wp-testimonials","http:\u002F\u002Fdswebsolutions.in","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-wp-testimonials.zip",{"attackSurface":174,"codeSignals":199,"taintFlows":253,"riskAssessment":281,"analyzedAt":295},{"hooks":175,"ajaxHandlers":195,"restRoutes":196,"shortcodes":197,"cronEvents":198,"entryPointCount":13,"unprotectedCount":13},[176,182,187,191],{"type":177,"name":178,"callback":179,"file":180,"line":181},"action","wp_footer","printAssets","core\\elfsight-plugin.php",39,{"type":177,"name":183,"callback":184,"file":185,"line":186},"admin_menu","addMenuPage","core\\includes\\admin.php",61,{"type":177,"name":188,"callback":189,"file":185,"line":190},"admin_init","registerAssets",62,{"type":177,"name":192,"callback":193,"file":185,"line":194},"admin_enqueue_scripts","enqueueAssets",63,[],[],[],[],{"dangerousFunctions":200,"sqlUsage":201,"outputEscaping":208,"fileOperations":116,"externalRequests":13,"nonceChecks":116,"capabilityChecks":13,"bundledLibraries":252},[],{"prepared":202,"raw":116,"locations":203},2,[204],{"file":205,"line":206,"context":207},"core\\includes\\widgets-api.php",34,"$wpdb->get_var() with variable interpolation",{"escaped":209,"rawEcho":210,"locations":211},6,19,[212,215,217,220,222,225,227,230,232,233,235,237,240,242,244,245,248,250,251],{"file":185,"line":213,"context":214},105,"raw output",{"file":185,"line":216,"context":214},106,{"file":218,"line":219,"context":214},"core\\includes\\templates\\header.php",31,{"file":218,"line":221,"context":214},32,{"file":223,"line":224,"context":214},"core\\includes\\templates\\menu-actions.php",7,{"file":223,"line":226,"context":214},8,{"file":228,"line":229,"context":214},"core\\includes\\templates\\menu.php",9,{"file":228,"line":231,"context":214},10,{"file":228,"line":231,"context":214},{"file":228,"line":234,"context":214},11,{"file":228,"line":236,"context":214},18,{"file":238,"line":239,"context":214},"core\\includes\\templates\\page-edit-widget.php",43,{"file":238,"line":241,"context":214},44,{"file":238,"line":243,"context":214},45,{"file":238,"line":26,"context":214},{"file":246,"line":247,"context":214},"core\\includes\\templates\\page-support.php",15,{"file":249,"line":224,"context":214},"core\\includes\\templates\\popup-rating.php",{"file":249,"line":26,"context":214},{"file":205,"line":69,"context":214},[],[254,273],{"entryPoint":255,"graph":256,"unsanitizedCount":116,"severity":272},"getList (core\\includes\\widgets-api.php:92)",{"nodes":257,"edges":269},[258,263],{"id":259,"type":260,"label":261,"file":205,"line":262},"n0","source","$_GET",97,{"id":264,"type":265,"label":266,"file":205,"line":267,"wp_function":268},"n1","sink","get_results() [SQLi]",107,"get_results",[270],{"from":259,"to":264,"sanitized":271},false,"high",{"entryPoint":274,"graph":275,"unsanitizedCount":116,"severity":272},"\u003Cwidgets-api> (core\\includes\\widgets-api.php:0)",{"nodes":276,"edges":279},[277,278],{"id":259,"type":260,"label":261,"file":205,"line":262},{"id":264,"type":265,"label":266,"file":205,"line":267,"wp_function":268},[280],{"from":259,"to":264,"sanitized":271},{"summary":282,"deductions":283},"The \"elfsight-testimonials-slider\" plugin v1.0.1 exhibits a concerning security posture, despite some positive indicators. While the static analysis reveals a seemingly small attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events without authentication or permission checks, this is overshadowed by critical findings in taint analysis and a significant vulnerability history. Two taint flows with unsanitized paths were identified, indicating potential for attackers to inject malicious code or manipulate data, even though the severity was classified as High.  The plugin also has a history of 3 known medium severity vulnerabilities, all of which are currently unpatched. These past vulnerabilities commonly include Missing Authorization, Cross-site Scripting, and CSRF, suggesting recurring security flaws in how user input is handled and access is controlled. The fact that these vulnerabilities remain unpatched, with the last one listed as recently as March 31, 2025, is a major red flag. Furthermore, the low percentage of properly escaped output (24%) is a significant weakness, greatly increasing the risk of XSS attacks where user-provided data can be rendered directly in the browser without proper sanitization. The presence of a file operation also warrants scrutiny in conjunction with the unsanitized paths. In conclusion, while the plugin has a minimal direct attack surface, the high severity taint flows, pervasive output escaping issues, and unpatched historical vulnerabilities create a substantial risk profile for users.",[284,286,288,290,293],{"reason":285,"points":163},"Unpatched CVEs (3 medium)",{"reason":287,"points":163},"High severity taint flows (2)",{"reason":289,"points":247},"Low output escaping (24%)",{"reason":291,"points":292},"File operation present",5,{"reason":294,"points":292},"Unsanitized paths in taint flows","2026-03-16T20:22:30.116Z",{"wat":297,"direct":308},{"assetPaths":298,"generatorPatterns":302,"scriptPaths":303,"versionParams":305},[299,300,301],"\u002Fwp-content\u002Fplugins\u002Felfsight-testimonials-slider\u002Fassets\u002Felfsight-testimonials-slider.js","\u002Fwp-content\u002Fplugins\u002Felfsight-testimonials-slider\u002Fassets\u002Felfsight-admin.css","\u002Fwp-content\u002Fplugins\u002Felfsight-testimonials-slider\u002Fassets\u002Felfsight-admin.js",[],[299,304],"\u002Fwp-content\u002Fplugins\u002Felfsight-testimonials-slider\u002Fpreview\u002Ftestimonials-slider-observer.js",[306,307],"elfsight-testimonials-slider\u002Fassets\u002Felfsight-admin.css?ver=","elfsight-testimonials-slider\u002Fassets\u002Felfsight-admin.js?ver=",{"cssClasses":309,"htmlComments":318,"htmlAttributes":319,"restEndpoints":322,"jsGlobals":323,"shortcodeOutput":325},[310,311,312,313,314,315,316,317],"elfsight-admin","elfsight-admin-wp-notifications-hack","elfsight-admin-wrapper","elfsight-admin-main","elfsight-admin-loading","elfsight-admin-loader","elfsight-admin-menu-container","elfsight-admin-pages-container",[],[320,321],"data-elfsight-admin-slug","data-elfsight-admin-widgets-clogged",[],[324],"ElfsightTestimonialsSliderPlugin",[]]