3 matches found
CVE-2024-32683
CVE-2024-32683 targets the WP Ultimate Review WordPress plugin. Connected sources describe an unauthenticated bypass via a user-controlled key/ID, enabling direct object reference and potentially bypassing review restrictions in versions up to 2.2.5. Public advisories (RH) label it as an Authoriz...
CVE-2024-32684
CVE-2024-32684 is a Missing Authorization vulnerability in the WordPress plugin “WP Ultimate Review.” The vulnerability affects WP Ultimate Review versions 2.2.5 and earlier (per the CVE entry: “from n/a through 2.2.5”). Public records in the initial document indicate a high-severity impact with ...
CVE-2024-32685
CVE-2024-32685 targets the WP Ultimate Review WordPress plugin (