CVE-2025-39533
CVE-2025-39533: Starfish Review Generation & Marketing for WordPress suffers Missing Authorization allowing privilege escalation via Arbitrary Options Update in versions up to 3.1.14 (reported as 3.1.19 or earlier in Patchstack). Update to 3.1.19+ to mitigate; CVSSv3.1 base score 8.8 (HIGH).