Wp Ultimate Review
Approved changes feed: RSS · Atom
cpe:2.3:a:wpmet:wp_ultimate_review:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Wpmet (bd15281a-fefd-5c31-99d6-3b159865bbf7) |
|---|---|
| Product | Wp Ultimate Review (2c080b39-abf1-52ab-99ba-8a873371ca8b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-32685 |
vulnerable | 2026-06-03 14:55:47.739021 |
WordPress WP Ultimate Review plugin <= 2.2.5 - Review Score Manipulation vulnerability
MEDIUM (5.3)
Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.2.5.
Published: 2024-05-17T08:59:35.766Z
Updated: 2026-04-28T16:09:38.876Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-32684 |
vulnerable | 2026-06-03 14:55:47.738584 |
WordPress WP Ultimate Review plugin <= 2.2.5 - Broken Access Control on Review vulnerability
MEDIUM (5.3)
Missing Authorization vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5.
Published: 2024-04-22T10:38:22.995Z
Updated: 2026-04-28T16:09:38.589Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-32683 |
vulnerable | 2026-06-03 14:55:47.738099 |
WordPress WP Ultimate Review plugin <= 2.2.5 - Insecure Direct Object References (IDOR) vulnerability
MEDIUM (5.3)
Authorization Bypass Through User-Controlled Key vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5.
Published: 2024-04-19T11:57:31.907Z
Updated: 2026-04-28T16:09:39.013Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21746 |
vulnerable | 2026-06-03 14:54:50.592352 |
WordPress Wp Ultimate Review plugin <= 2.3.6 - IP limit Bypass vulnerability
MEDIUM (5.3)
Authentication Bypass by Spoofing vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows Identity Spoofing.This issue affects Wp Ultimate Review: from n/a through <= 2.3.6.
Published: 2024-05-17T08:46:01.927Z
Updated: 2026-04-29T09:51:52.568Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46085 |
vulnerable | 2026-06-03 14:53:08.915269 |
WordPress Wp Ultimate Review Plugin <= 2.2.4 is vulnerable to Cross Site Request Forgery (CSRF)
MEDIUM (4.3)
Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.2.4 versions.
Published: 2023-10-22T21:11:59.362Z
Updated: 2026-04-28T16:08:45.035Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28987 |
vulnerable | 2026-06-03 14:51:39.221377 |
WordPress Wp Ultimate Review Plugin <= 2.0.3 is vulnerable to Cross Site Request Forgery (CSRF)
MEDIUM (4.3)
Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.0.3 versions.
Published: 2023-11-12T21:28:13.719Z
Updated: 2026-04-28T16:08:17.054Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28751 |
vulnerable | 2026-06-03 14:51:37.399923 |
WordPress Wp Ultimate Review Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)
MEDIUM (5.9)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.0.3 versions.
Published: 2023-06-23T12:26:27.148Z
Updated: 2026-04-28T16:08:16.589Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.