CVE-2026-39644

Missing Authorization vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wp Ultimate Review: from n/a through = 2.3.8...

EUVD-2026-20303

Missing Authorization vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wp Ultimate Review: from n/a through = 2.3.8...

CVE-2026-39644

CVE-2026-39644 concerns a Missing Authorization vulnerability in the WordPress plugin “Wp Ultimate Review” by Roxnor, specifically affecting versions up to and including 2.3.8. The root cause is described as Incorrectly Configured Access Control Security Levels, enabling unauthorized access under...

CVE-2025-63057 WordPress Wp Ultimate Review plugin <= 2.3.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows DOM-Based XSS.This issue affects Wp Ultimate Review: from n/a through = 2.3.7...

CVE-2025-63057

CVE-2025-63057 refers to a DOM-based XSS in the WordPress plugin WP Ultimate Review (Roxnor) affecting versions from and including up to 2.3.7. The vulnerability arises from improper input neutralization during web page generation, enabling cross-site scripting on pages rendered by the plugin. Pu...

EUVD-2023-32605

Malicious code in bioql PyPI...

EUVD-2024-30472

Malicious code in bioql PyPI...

EUVD-2024-19360

Malicious code in bioql PyPI...

EUVD-2024-30470

Malicious code in bioql PyPI...

EUVD-2023-50346

Malicious code in bioql PyPI...

EUVD-2024-30471

Malicious code in bioql PyPI...

CVE-2024-32683

Authorization Bypass Through User-Controlled Key vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5...

CVE-2024-32684

Missing Authorization vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5...

CVE-2024-21746

Authentication Bypass by Spoofing vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows Identity Spoofing.This issue affects Wp Ultimate Review: from n/a through = 2.3.6...

CVE-2024-32685

Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.2.5...

CVE-2023-46085

Cross-Site Request Forgery CSRF vulnerability in Wpmet Wp Ultimate Review plugin = 2.2.4 versions...

CVE-2023-28987

Cross-Site Request Forgery CSRF vulnerability in Wpmet Wp Ultimate Review plugin = 2.0.3 versions...

CVE-2023-28751

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Wpmet Wp Ultimate Review plugin = 2.0.3 versions...

CVE-2024-32685

Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.2.5...

CVE-2024-21746

Authentication Bypass by Spoofing vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.3.2...