This page lists publicly disclosed CVE vulnerabilities affecting wpmet wp_ultimate_review (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-32685 | Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a through 2.2.5. | [email protected] | 5.3 | 0.39% | 2024-05-17 | 2026-06-17 |
| CVE-2024-21746 | Authentication Bypass by Spoofing vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review allows Identity Spoofing.This issue affects Wp Ultimate Review: from n/a through <= 2.3.6. | [email protected] | 5.3 | 0.48% | 2024-05-17 | 2026-06-17 |
| CVE-2024-32684 | Missing Authorization vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5. | [email protected] | 5.3 | 0.39% | 2024-04-22 | 2026-06-17 |
| CVE-2024-32683 | Authorization Bypass Through User-Controlled Key vulnerability in Wpmet Wp Ultimate Review.This issue affects Wp Ultimate Review: from n/a through 2.2.5. | [email protected] | 5.3 | 0.46% | 2024-04-19 | 2026-06-17 |
| CVE-2023-28987 | Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.0.3 versions. | [email protected] | 4.3 | 0.31% | 2023-11-12 | 2026-06-17 |
| CVE-2023-46085 | Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.2.4 versions. | [email protected] | 4.3 | 0.21% | 2023-10-22 | 2026-06-17 |
| CVE-2023-28751 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.0.3 versions. | [email protected] | 5.9 | 0.37% | 2023-06-23 | 2026-06-17 |