Ultimate Reviews Security Vulnerabilities and Issues — Ultimate Reviews CVE List

Lucene search

EtoilewebdesignUltimate Reviews

3 matches found

CVE•added 2024/03/15 2:15 p.m.•55 views

CVE-2024-25597

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Etoile Web Design Ultimate Reviews allows Stored XSS.This issue affects Ultimate Reviews: from n/a through 3.2.8.

7.1CVSS6.8AI score0.00072EPSS

CVE•added 2022/01/28 8:15 p.m.•49 views

CVE-2022-23979

Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability discovered in Ultimate Reviews WordPress plugin (versions

4.8CVSS4.8AI score0.00319EPSS

CVE•added 2023/06/07 2:15 a.m.•36 views

CVE-2020-36726

The Ultimate Reviews plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.1.32 via deserialization of untrusted input in several vulnerable functions. This allows unauthenticated attackers to inject a PHP Object. No POP chain is present in the vulnerable pl...

9.8CVSS9.6AI score0.00765EPSS