| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-46801 | WordPress Site Reviews Plugin <= 6.2.0 is vulnerable to CSV Injection | Paul Ryley | Site Reviews | 超危 | - | 2023-11-07 16:11:32 | Deep Dive |
| CVE-2022-46802 | WordPress Product Reviews Import Export for WooCommerce Plugin <= 1.4.8 is vulnerable to CSV Injection | WebToffee | Product Reviews Import Export for WooCommerce | 超危 | - | 2023-11-07 16:07:32 | Deep Dive |
| CVE-2023-4648 | WP Customer Reviews <= 3.6.6 - Authenticated (Administrator+) Stored Cross-Site Scripting | bompus | WP Customer Reviews | Medium | 4.4 | 2023-10-20 07:29:41 | Deep Dive |
| CVE-2023-3254 | Widgets for Google Reviews <= 10.9 - Cross-Site Request Forgery to Plugin Settings Reset | trustindex | Widgets for Google Reviews | Medium | 4.3 | 2023-10-18 04:32:21 | Deep Dive |
| CVE-2023-45048 | WordPress Social proof testimonials and reviews by Repuso Plugin <= 5.00 is vulnerable to Cross Site Request Forgery (CSRF) | Repuso | Social proof testimonials and reviews by Repuso | Medium | 5.4 | 2023-10-12 12:16:39 | Deep Dive |
| CVE-2021-4426 | Absolute Reviews <= 1.0.8 - Cross-Site Request Forgery Bypass | codesupplyco | Absolute Reviews | Medium | 4.3 | 2023-07-12 07:21:51 | Deep Dive |
| CVE-2023-27612 | WordPress Site Reviews Plugin <= 6.5.1 is vulnerable to Cross Site Scripting (XSS) | Paul Ryley | Site Reviews | Medium | 6.5 | 2023-06-22 07:55:25 | Deep Dive |
| CVE-2023-27629 | WordPress Site Reviews Plugin <= 6.5.1 is vulnerable to Cross Site Scripting (XSS) | Paul Ryley | Site Reviews | Medium | 6.5 | 2023-06-22 07:46:05 | Deep Dive |
| CVE-2020-36726 | Ultimate Reviews < 2.1.33 - PHP Object Injection | rustaurius | Ultimate Reviews | Critical | 9.8 | 2023-06-07 01:51:47 | Deep Dive |
| CVE-2023-2833 | ReviewX <= 1.6.13 - Arbitrary Usermeta Update to Authenticated (Subscriber+) Privilege Escalation | reviewx | ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema | High | 8.8 | 2023-06-06 09:33:23 | Deep Dive |
| CVE-2023-23720 | WordPress Verified Reviews (Avis Vérifiés) Plugin <= 2.3.13 is vulnerable to Cross Site Scripting (XSS) | NetReviews SAS | Verified Reviews (Avis Vérifiés) | Medium | 5.9 | 2023-05-16 09:31:58 | Deep Dive |
| CVE-2023-1525 | Site Reviews < 6.7.1 - Admin+ Stored XSS | Unknown | Site Reviews | 中危 | - | 2023-05-02 07:04:49 | Deep Dive |
| CVE-2023-0424 | MS-Reviews <= 1.5 - Subscriber+ Stored XSS | Unknown | MS-Reviews | 中危 | - | 2023-04-24 18:30:58 | Deep Dive |
| CVE-2022-44580 | WordPress Plugin for Google Reviews Plugin <= 2.2.3 is vulnerable to SQL Injection | RichPlugins | Plugin for Google Reviews | Critical | 9.1 | 2023-03-15 14:37:16 | Deep Dive |
| CVE-2023-0080 | Customer Reviews for WooCommerce < 5.16.0 - Contributor+ LFI | Unknown | Customer Reviews for WooCommerce | 高危 | - | 2023-02-13 14:32:22 | Deep Dive |
| CVE-2023-0061 | Judge.me Product Reviews for WooCommerce < 1.3.21 - Contributor+ Stored XSS | Unknown | Judge.me Product Reviews for WooCommerce | 中危 | - | 2023-02-13 14:32:15 | Deep Dive |
| CVE-2022-4470 | Widgets for Google Reviews < 9.8 - Contributor+ Stored XSS | Unknown | Widgets for Google Reviews | 中危 | - | 2023-01-30 20:31:57 | Deep Dive |
| CVE-2022-45369 | WordPress Plugin for Google Reviews plugin <= 2.2.2 - Auth. Broken Access Control vulnerability | RichPlugins | Plugin for Google Reviews (WordPress plugin) | Medium | 4.3 | 2022-11-18 21:51:17 | Deep Dive |
| CVE-2022-38134 | WordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Authenticated Broken Access Control vulnerability | CusRev | Customer Reviews for WooCommerce (WordPress plugin) | Medium | 4.3 | 2022-09-23 15:14:40 | Deep Dive |
| CVE-2022-38470 | WordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Cross-Site Request Forgery (CSRF) vulnerability | CusRev | Customer Reviews for WooCommerce (WordPress plugin) | Medium | 4.3 | 2022-09-23 15:08:23 | Deep Dive |