A vulnerability marked as problematic has been reported in Client Testimonial Slider Plugin up to 2.0 on WordPress. This impacts an unknown function. Performing a manipulation of the argument aft_testimonial_meta_name results in cross site scripting.
This vulnerability is cataloged as CVE-2025-13897. It is possible to initiate the attack remotely. There is no exploit available.
