Comments Rating Security Vulnerabilities and Issues — Comments Rating CVE List

PixelgradeComments Rating

3 matches found

CVE•added 2023/11/06 9:37 a.m.•85 views

CVE-2023-23702

CVE-2023-23702 is a stored XSS vulnerability in the Pixelgrade Comments Ratings WordPress plugin (versions ≤ 1.1.7) exploitable by users with admin+ privileges. The issue permits injection of malicious scripts via the plugin’s input surface and is rated medium by CVSS (base 4.8–4.9 in sources). P...

5.9CVSS4.9AI score0.00316EPSS

CVE•added 2023/10/16 8:46 a.m.•44 views

CVE-2023-45654

CVE-2023-45654 is a CSRF vulnerability in Pixelgrade Comments Ratings plugin ≤ 1.1.7. The initial description confirms CSRF, with no explicit exploitation details in the provided documents. NVD metrics show a high base score (8.8) per CVSS 3.1, while PatchStack notes a low-priority/unclear remedi...

8.8CVSS6.4AI score0.00214EPSS

CVE•added 2023/07/11 7:35 a.m.•34 views

CVE-2023-23704

CVE-2023-23704 is a CSRF vulnerability in the WordPress plugin Pixelgrade Comments Ratings affecting versions up to 1.1.6 . The vulnerability is described across sources as Cross-Site Request Forgery with unauthenticated access, enabling CSRF actions on sites using the plugin. Affected product: P...

8.8CVSS6.5AI score0.00256EPSS