CVE-2024-32685
- EPSS 0.14%
- Published 17.05.2024 09:15:39
- Last modified 07.02.2025 18:42:46
Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.2.5.
CVE-2024-21746
- EPSS 0.11%
- Published 17.05.2024 09:15:20
- Last modified 07.02.2025 18:34:27
Authentication Bypass by Spoofing vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.3.2.
CVE-2024-32684
- EPSS 0.16%
- Published 22.04.2024 11:15:46
- Last modified 09.02.2025 20:42:10
Missing Authorization vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5.
CVE-2024-32683
- EPSS 0.27%
- Published 19.04.2024 12:15:07
- Last modified 09.02.2025 20:41:17
Authorization Bypass Through User-Controlled Key vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5.
CVE-2023-28987
- EPSS 0.07%
- Published 12.11.2023 22:15:29
- Last modified 21.11.2024 07:56:20
Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.0.3 versions.
CVE-2023-46085
- EPSS 0.07%
- Published 22.10.2023 22:15:08
- Last modified 21.11.2024 08:27:52
Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.2.4 versions.
CVE-2023-28751
- EPSS 0.06%
- Published 23.06.2023 13:15:10
- Last modified 21.11.2024 07:55:56
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.0.3 versions.