| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-0837 | Puzzles <= 4.2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | ThemeREX | Puzzles | WP Magazine / Review with Store WordPress Theme + RTL | Medium | 6.4 | 2025-02-13 04:21:46 | Deep Dive |
| CVE-2024-13769 | Puzzles | WP Magazine / Review with Store WordPress Theme + RTL <= 4.2.4 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting | ThemeREX | Puzzles | WP Magazine / Review with Store WordPress Theme + RTL | Medium | 6.4 | 2025-02-12 04:22:14 | Deep Dive |
| CVE-2024-13392 | Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings <= 1.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | videowhisper | Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings | Medium | 6.4 | 2025-01-18 07:11:24 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-44022 | WordPress Review & testimonial widgets plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability | Trustmary | Review & testimonial widgets | Medium | 6.5 | 2024-10-06 12:46:28 | Deep Dive |
| CVE-2024-8052 | Review Ratings <= 1.6 - Stored XSS via CSRF | Unknown | Review Ratings | 中危 | - | 2024-09-17 06:00:06 | Deep Dive |
| CVE-2024-35630 | WordPress WP TripAdvisor Review Slider plugin <= 12.6 - SQL Injection vulnerability | LJ Apps | WP TripAdvisor Review Slider | High | 7.6 | 2024-06-03 10:27:07 | Deep Dive |
| CVE-2024-32685 | WordPress WP Ultimate Review plugin <= 2.2.5 - Review Score Manipulation vulnerability | Wpmet | Wp Ultimate Review | Medium | 5.3 | 2024-05-17 08:59:36 | Deep Dive |
| CVE-2024-21746 | WordPress Wp Ultimate Review plugin <= 2.3.6 - IP limit Bypass vulnerability | Roxnor | Wp Ultimate Review | 中危 | - | 2024-05-17 08:46:02 | Deep Dive |
| CVE-2024-2310 | WP Google Review Slider < 13.6 - Admin+ Stored XSS | Unknown | WP Google Review Slider | - | - | 2024-04-26 05:00:03 | Deep Dive |
| CVE-2024-32684 | WordPress WP Ultimate Review plugin <= 2.2.5 - Broken Access Control on Review vulnerability | Wpmet | Wp Ultimate Review | Medium | 5.3 | 2024-04-22 10:38:23 | Deep Dive |
| CVE-2024-32683 | WordPress WP Ultimate Review plugin <= 2.2.5 - Insecure Direct Object References (IDOR) vulnerability | Wpmet | Wp Ultimate Review | Medium | 5.3 | 2024-04-19 11:57:32 | Deep Dive |
| CVE-2024-23139 | ActionScript Byte Code “ABC” Vulnerability in the Autodesk FBX Review software | Autodesk | FBX Review | High | 7.8 | 2024-03-17 23:58:51 | Deep Dive |
| CVE-2024-2553 | SourceCodester Product Review Rating System Rate Product cross site scripting | SourceCodester | Product Review Rating System | Low | 3.5 | 2024-03-17 04:00:08 | Deep Dive |
| CVE-2023-51685 | WordPress WP Review Slider Plugin <= 12.7 is vulnerable to Cross Site Scripting (XSS) | LJ Apps | WP Review Slider | Medium | 5.9 | 2024-02-01 10:37:08 | Deep Dive |
| CVE-2024-0836 | WordPress Review & Structure Data Schema Plugin – Review Schema <= 2.1.14 - Missing Authorization to Arbitrary Review Update | techlabpro1 | Review Schema – Review & Structure Data Schema Plugin | Medium | 4.3 | 2024-01-31 07:33:07 | Deep Dive |
| CVE-2023-6456 | WP Review Slider < 13.0 - Admin+ Stored XSS | Unknown | WP Review Slider | 中危 | - | 2024-01-22 19:14:28 | Deep Dive |
| CVE-2023-52213 | WordPress Rate Star Review Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS) | VideoWhisper | Rate Star Review – AJAX Reviews for Content, with Star Ratings | High | 7.1 | 2024-01-08 19:26:35 | Deep Dive |
| CVE-2023-6037 | WP TripAdvisor Review Slider < 11.9 - Admin+ Stored XSS | Unknown | WP TripAdvisor Review Slider | 中危 | - | 2024-01-01 14:18:57 | Deep Dive |
| CVE-2023-28987 | WordPress Wp Ultimate Review Plugin <= 2.0.3 is vulnerable to Cross Site Request Forgery (CSRF) | Wpmet | Wp Ultimate Review | Medium | 4.3 | 2023-11-12 21:28:14 | Deep Dive |