Bestwebsoft Rating vulnerabilities
2 known vulnerabilities affecting bestwebsoft/rating.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2017-18530P4MEDIUMCVSS 6.1PoCfixed in 0.22019-08-20
CVE-2017-18530 [MEDIUM] CWE-79 CVE-2017-18530: The rating-bws plugin before 0.2 for WordPress has multiple XSS issues.
The rating-bws plugin before 0.2 for WordPress has multiple XSS issues.
nvd
CVE-2021-25121P4MEDIUMCVSS 6.5fixed in 1.62022-06-20
CVE-2021-25121 [MEDIUM] CWE-191 CVE-2021-25121: The Rating by BestWebSoft WordPress plugin before 1.6 does not validate the submitted rating, allowi
The Rating by BestWebSoft WordPress plugin before 1.6 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service on the post/page when a user submit such rating
nvd