4 matches found
CVE-2020-35438
Cross Site Scripting XSS vulnerability in the kk Star Ratings plugin before 4.1.5...
WordPress kk Star Ratings plugin <= 5.4.10 - Unauthenticated Arbitrary Shortcode Execution vulnerability
Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by mikemyers in WordPress Plugin kk Star Ratings versions = 5.4.10...
CVE-2020-35438
Cross Site Scripting XSS vulnerability in the kk Star Ratings plugin before 4.1.5...
CVE-2020-35438
CVE-2020-35438 is a Cross Site Scripting (XSS) vulnerability in the kk Star Ratings plugin prior to version 4.1.5. The issue affects the plugin’s handling of user-provided input in its rating functionality, enabling an attacker to inject malicious scripts. Public sources in connected documents co...