Lucene search
K

8 matches found

CVE
CVE
added 2 days ago4 views

CVE-2026-57354

The CVE-2026-57354 entry describes a Subscriber Cross Site Scripting (XSS) vulnerability in the WordPress JetReviews plugin limited to versions

6.5CVSS5.8AI score0.00224EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.3 views

CVE-2025-49921 WordPress JetReviews plugin <= 3.0.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Crocoblock JetReviews jet-reviews allows PHP Local File Inclusion.This issue affects JetReviews: from n/a through = 3.0.0...

7.5CVSS5.3AI score0.00448EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/19 5:15 p.m.26 views

CVE-2025-39396 WordPress JetReviews plugin <= 2.3.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Crocoblock JetReviews jet-reviews allows PHP Local File Inclusion.This issue affects JetReviews: from n/a through = 2.3.6...

7.5CVSS0.0051EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/19 5:15 p.m.6 views

CVE-2025-39396 WordPress JetReviews plugin <= 2.3.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Crocoblock JetReviews allows PHP Local File Inclusion.This issue affects JetReviews: from n/a through 2.3.6...

7.5CVSS7.2AI score0.0051EPSS
Exploits0References1
CVE
CVE
added 2025/05/19 5:15 p.m.42 views

CVE-2025-39396

CVE-2025-39396 affects WordPress JetReviews for Elementor (JetReviews plugin)

7.5CVSS7.2AI score0.0051EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.9 views

WordPress JetReviews Plugin <= 2.3.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software JetReviews Type Plugin Vulnerable versions = 2.3.2 Fixed in 2.3.2.1 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-48762 Patch priority Low CVSS severity Low 6.3 Developer Crocoblock PSID 9d6ba75febf9 Credits Rafie Muhammad Patchstack...

8.8CVSS7AI score0.00237EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.9 views

WordPress JetReviews Plugin <= 2.3.2 is vulnerable to Broken Access Control

Software JetReviews Type Plugin Vulnerable versions = 2.3.2 Fixed in 2.3.2.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48761 Patch priority Medium CVSS severity Medium 6.3 Developer Crocoblock PSID 02df9f71dc32 Credits Rafie Muhammad Patchstack...

6.3CVSS6.8AI score0.00268EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/11/28 12:0 a.m.17 views

WordPress JetReviews Plugin <= 2.3.2 is vulnerable to Broken Access Control

Software JetReviews Type Plugin Vulnerable versions = 2.3.2 Fixed in 2.3.2.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-48760 Patch priority Medium CVSS severity Medium 8.2 Developer Crocoblock PSID 92a291e17f08 Credits Rafie Muhammad Patchstack...

9.8CVSS6.8AI score0.00445EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder