38 matches found
EUVD-2025-37172
Malicious code in epic-comment-rating npm...
MAL-2025-49122 Malicious code in epic-comment-rating-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e3cd259d5ade70b14b1659d77f4d7271460e40c6329a4c9dd43c8727e251da The package epic-comment-rating-frontend was found to contain malicious code...
Malicious code in epic-comment-rating-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e545e5ad95e677ec0468b1254d12e8d5f47eb49cb6261a4ec337fd1c6dee7020 The package epic-comment-rating-service was found to contain malicious code...
Malicious code in epic-comment-rating-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e3cd259d5ade70b14b1659d77f4d7271460e40c6329a4c9dd43c8727e251da The package epic-comment-rating-frontend was found to contain malicious code...
EUVD-2025-37170
Malicious code in epic-comment-rating-service npm...
Malicious code in epic-comment-rating (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b482eaca9889c0f8ac5d950fc6630478102d1ced2132fb08c5ad85366b6954ac The package epic-comment-rating was found to contain malicious code...
MAL-2025-49121 Malicious code in epic-comment-rating (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b482eaca9889c0f8ac5d950fc6630478102d1ced2132fb08c5ad85366b6954ac The package epic-comment-rating was found to contain malicious code...
CVE-2023-3869
The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the voteOnComment function in versions up to, and including, 7.6.3. This makes it possible for unauthenticated attackers to increase or decrease the rating of a comment...
CVE-2023-3869
The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the voteOnComment function in versions up to, and including, 7.6.3. This makes it possible for unauthenticated attackers to increase or decrease the rating of a comment...
PT-2023-26554 · WordPress · Wpdiscuz
Name of the Vulnerable Software and Affected Versions: wpDiscuz plugin for WordPress versions up to, and including, 7.6.3 Description: The issue is related to a missing authorization check on the voteOnComment function, allowing unauthenticated attackers to modify data by increasing or decreasing...
CVE-2022-0279 AnyComment < 0.2.18 - Comment Rating Increase/Decrease via Race Condition
The AnyComment WordPress plugin before 0.2.18 is affected by a race condition when liking/disliking a comment/reply, which could allow any authenticated user to quickly raise their rating or lower the rating of other users...
WordPress Comment Rating Plugin Cross-Site Scripting
A cross-site scripting vulnerability exists in WordPress Comment Rating Plugin. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
WordPress Comment Rating 1.5.0 Cross Site Scripting
FULL DISCLOSURE Product : wp-comment-rating Exploit Author : Rahul Pratap Singh Version : 1.5.0 Home page Link : http://codecanyon.net/item/wordpress-comment-rating-plugin/6582710 Website : 0x62626262.wordpress.com Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 Date : 30/Jan/2016 XSS...
Comment Rating 2.9.23 - Multiple Vulnerabilities
The comment-rating WordPress plugin was affected by a Multiple Vulnerabilities security vulnerability...
Comment Rating 2.9.23 Wordpress Plugin Multiple Vulnerabilities
No description provided by source. Source: http://packetstormsecurity.org/files/view/98660/commentrating-sqldisclose.txt ================================= Vulnerability ID: HTB22842 Reference: http://www.htbridge.ch/advisory/pathdisclosureincommentratingwordpressplugin.html Product: Comment Ratin...
Wordpress Comment Rating Plugin 2.9.32 - Multiple Vulnerabilities
No description provided by source. Exploit Title: Wordpress plugin: Comment Rating SQL injection Google Dork: Date: 21/02/2013 Exploit Author: ebanyu Url Author: www.ebanyu.com.ar Vendor Homepage: wealthynetizen.com Software Link: http://wealthynetizen.com/wordpress-plugin-comment-rating/ Version...
Wordpress Comment Rating Plugin 2.9.32 - Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: Wordpress plugin: Comment Rating SQL injection Google Dork: Date: 21/02/2013 Exploit Author: ebanyu Url Author: www.ebanyu.com.ar Vendor Homepage: wealthynetizen.com Software Link:...
WordPress Comment Rating Plugin 2.9.32 - Multiple Vulnerabilities
This Comment Rating plugin is prone to multiple vulnerabilities such as comment rating SQL injection and BYPASS. Solution Update the plugin...
WordPress Comment Rating 2.9.32 SQL Injection / Bypass
Exploit Title: Wordpress plugin: Comment Rating SQL injection Google Dork: Date: 21/02/2013 Exploit Author: ebanyu Url Author: www.ebanyu.com.ar Vendor Homepage: wealthynetizen.com Software Link: http://wealthynetizen.com/wordpress-plugin-comment-rating/ Version: 2.9.32 Tested on: Fedora 18 + mys...
WordPress Plugin Comment Rating 2.9.32 - Multiple Vulnerabilities
Exploit Title: Wordpress plugin: Comment Rating SQL injection Google Dork: Date: 21/02/2013 Exploit Author: ebanyu Url Author: www.ebanyu.com.ar Vendor Homepage: wealthynetizen.com Software Link: http://wealthynetizen.com/wordpress-plugin-comment-rating/ Version: 2.9.32 Tested on: Fedora 18 + mys...