Lucene search

Reviewx Security Vulnerabilities - 2023

cve

CVE-2022-46809

Improper Neutralization of Formula Elements in a CSV File vulnerability in WPDeveloper ReviewX – Multi-criteria Rating & Reviews for WooCommerce.This issue affects ReviewX – Multi-criteria Rating & Reviews for WooCommerce: from n/a through 1.6.7.

9.8CVSS

9.3AI Score

0.001EPSS

2023-11-07 05:15 PM

cve

CVE-2023-26325

The 'rx_export_review' action in the ReviewX WordPress Plugin, is affected by an authenticated SQL injection vulnerability in the 'filterValue' and 'selectedColumns' parameters.

8.8CVSS

8.9AI Score

0.001EPSS

2023-02-23 08:15 PM

cve

CVE-2023-2833

The ReviewX plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.13 due to insufficient restriction on the 'rx_set_screen_options' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify their...

8.8CVSS

8.4AI Score

0.002EPSS

2023-06-06 10:15 AM