3 matches found
CVE-2021-24894
The Reviews Plus WordPress plugin before 1.2.14 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service in the review section when an authenticated user submit such rating and the reviews are set to be displayed on the post/page...
CVE-2021-24894
The Reviews Plus WordPress plugin before 1.2.14 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service in the review section when an authenticated user submit such rating and the reviews are set to be displayed on the post/page...
CVE-2021-24894
CVE-2021-24894 affects the Reviews Plus WordPress plugin versions prior to 1.2.14. The root cause is lack of validation for the submitted rating, which allows an excessively long integer to be posted. When reviews are configured to display on posts/pages and an authenticated user submits such a r...