stars rating project stars rating vulnerabilities and exploits

(subscribe to this query)

445

VMScore

The Stars Rating WordPress plugin prior to 3.5.1 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service in the comments section, or pending comment dashboard depending if the user sent it as unauthenticated or authenticated.

Stars Rating Project Stars Rating

668

VMScore

The 5 Stars Rating Funnel WordPress Plugin | RRatingg WordPress plugin prior to 1.2.54 does not properly sanitise, validate and escape lead ids before using them in a SQL statement via the rrtngg_delete_leads AJAX action, available to unauthenticated users, leading to an unauthen...

5 Stars Rating Funnel Project 5 Stars Rating Funnel

NA

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR – Yet Another Star Rating Plugin for WordPress.This issue affects YASR – Yet Another Star Rating Plugin for WordPress: from n/a up to and including 3.3.8.

Yet Another Stars Rating Project Yet Another Stars Rating

578

VMScore

The yet-another-stars-rating plugin prior to 0.9.1 for WordPress has yasr_get_multi_set_values_and_field SQL injection via the set_id parameter.

Yet Another Stars Rating Project Yet Another Stars Rating

383

VMScore

Cross-Site Scripting (XSS) vulnerability discovered in Yasr – Yet Another Stars Rating WordPress plugin (versions <= 2.9.9), vulnerable at parameter 'source'.

Yet Another Stars Rating Project Yet Another Stars Rating

NA

Cross-Site Scripting (XSS) vulnerability in Dario Curvino Yasr – Yet Another Stars Rating plugin <= 3.1.2 versions.

Yasr - Yet Another Stars Rating Project Yasr - Yet Another Stars Rating

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook