WordPress Reviews Plus plugin <= 1.2.13 - Reviews Denial of Service (DoS) vulnerability

2021-10-2500:00:00

Drew Jones

patchstack.com

wordpress reviews plus

denial of service

drew jones

update

EPSS

0.001

Percentile

27.9%

Reviews Denial of Service (DoS) vulnerability discovered by Drew Jones in WordPress Reviews Plus plugin (versions <= 1.2.13).

Solution

           Update the WordPress Reviews Plus plugin to the latest available version (at least 1.2.14).

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24894

wordpress.org/plugins/reviews-plus/#developers

wpscan.com/vulnerability/79bb5acb-ea56-41a9-83a1-28a181ae41e2

EPSS

0.001

Percentile

27.9%

Related for PATCHSTACK:E628A63E30E66136072C9F547C3ED664