Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/12/19 7:32 a.m.5 views

CVE-2025-64375

Missing Authorization vulnerability in Mahmudul Hasan Arif WP Social Ninja wp-social-reviews allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Social Ninja: from n/a through = 3.20.1...

6.5CVSS7AI score0.00198EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 9:30 a.m.5 views

EUVD-2025-204057

Missing Authorization vulnerability in Mahmudul Hasan Arif WP Social Ninja wp-social-reviews allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Social Ninja: from n/a through = 3.20.1...

6.5CVSS6.5AI score0.00198EPSS
Exploits0References2
NVD
NVD
added 2025/12/18 8:16 a.m.9 views

CVE-2025-64375

Missing Authorization vulnerability in Mahmudul Hasan Arif WP Social Ninja wp-social-reviews allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Social Ninja: from n/a through = 3.20.1...

6.5CVSS0.00198EPSS
Exploits0References1
NVD
NVD
added 2025/12/09 4:17 p.m.4 views

CVE-2025-12705

The Social Reviews & Recommendations plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in the 'trimtext' function in all versions up to, and including, 2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

7.2CVSS0.00327EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/12/09 1:51 p.m.29 views

CVE-2025-12705 Social Reviews & Recommendations <= 2.5 - Unauthenticated Stored Cross-Site Scripting via Social Media Reviews

The Social Reviews & Recommendations plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in the 'trimtext' function in all versions up to, and including, 2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

7.2CVSS0.00327EPSS
Exploits0References6
CVE
CVE
added 2025/12/09 1:51 p.m.18 views

CVE-2025-12705

CVE-2025-12705 targets the Social Reviews & Recommendations plugin for WordPress. It is a Stored Cross-Site Scripting (Stored XSS) flaw in multiple parameters via the trim_text function affecting all versions up to and including 2.5. The root cause is insufficient input sanitization and output es...

7.2CVSS4.9AI score0.00327EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

WordPress plugin Social Reviews Recommendations 跨站脚本漏洞

...

7.2CVSS5.8AI score0.00327EPSS
Exploits0References6
Rows per page
Query Builder