WordPress YASR – Yet Another Star Rating Plugin for WordPress plugin <= 3.4.12 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Yet Another Stars Rating versions = 3.4.12...

EUVD-2021-11805

Malware in sbrugna...

EUVD-2024-45415

Malicious code in bioql PyPI...

EUVD-2023-43037

Malicious code in bioql PyPI...

EUVD-2024-30512

Malicious code in bioql PyPI...

EUVD-2024-29254

Malicious code in bioql PyPI...

EUVD-2022-43970

Malicious code in bioql PyPI...

EUVD-2025-19363

Malicious code in bioql PyPI...

CVE-2025-53296

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ecoal95 EC Stars Rating ec-stars-rating allows Stored XSS.This issue affects EC Stars Rating: from n/a through = 1.0.11...

CVE-2025-53296

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ecoal95 EC Stars Rating ec-stars-rating allows Stored XSS.This issue affects EC Stars Rating: from n/a through = 1.0.11...

CVE-2025-53296 WordPress EC Stars Rating plugin <= 1.0.11 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ecoal95 EC Stars Rating ec-stars-rating allows Stored XSS.This issue affects EC Stars Rating: from n/a through = 1.0.11...

CVE-2025-53296 WordPress EC Stars Rating plugin <= 1.0.11 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ecoal95 EC Stars Rating ec-stars-rating allows Stored XSS.This issue affects EC Stars Rating: from n/a through = 1.0.11...

CVE-2025-53296

CVE-2025-53296 (WordPress EC Stars Rating plugin) : The EC Stars Rating plugin is affected by a stored XSS vulnerability in input during web page generation, affecting versions 1.0.0 through 1.0.11. Public sources corroborate Cross-Site Scripting in this plugin, with CVSS v3.1 base score around 5...

WordPress plugin EC Stars Rating Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

CVE-2024-32725

Missing Authorization vulnerability in Saleswonder Team: Tobias 5 Stars Rating Funnel 5-stars-rating-funnel.This issue affects 5 Stars Rating Funnel: from n/a through = 1.2.67...

CVE-2023-39305

Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through = 3.4.3...

CVE-2021-24893

The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service in the comments section, or pending comment dashboard depending if the user sent it as unauthenticated or authenticated...

CVE-2015-9465

The yet-another-stars-rating plugin before 0.9.1 for WordPress has yasrgetmultisetvaluesandfield SQL injection via the setid parameter...

CVE-2024-51579

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saleswonder Team: Tobias 5 Stars Rating Funnel 5-stars-rating-funnel.This issue affects 5 Stars Rating Funnel: from n/a through = 1.4.01...

CVE-2024-31358

Missing Authorization vulnerability in Saleswonder Team: Tobias 5 Stars Rating Funnel 5-stars-rating-funnel.This issue affects 5 Stars Rating Funnel: from n/a through = 1.2.67...