CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24753

The Rich Reviews by Starfish WordPress plugin before 1.9.6 does not properly validate the orderby GET parameter of the pending reviews page before using it in a SQL statement, leading to an authenticated SQL injection issue

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.2%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 6.5

References

Products affected by CVE-2021-24753

Starfish » Rich Review » Version: 1.0

cpe:2.3:a:starfish:rich_review:1.0
Starfish » Rich Review » Version: 1.1

cpe:2.3:a:starfish:rich_review:1.1
Starfish » Rich Review » Version: 1.2

cpe:2.3:a:starfish:rich_review:1.2
Starfish » Rich Review » Version: 1.3

cpe:2.3:a:starfish:rich_review:1.3
Starfish » Rich Review » Version: 1.4

cpe:2.3:a:starfish:rich_review:1.4
Starfish » Rich Review » Version: 1.4.1

cpe:2.3:a:starfish:rich_review:1.4.1
Starfish » Rich Review » Version: 1.4.2

cpe:2.3:a:starfish:rich_review:1.4.2
Starfish » Rich Review » Version: 1.5.0

cpe:2.3:a:starfish:rich_review:1.5.0
Starfish » Rich Review » Version: 1.5.1

cpe:2.3:a:starfish:rich_review:1.5.1
Starfish » Rich Review » Version: 1.5.10

cpe:2.3:a:starfish:rich_review:1.5.10
Starfish » Rich Review » Version: 1.5.11

cpe:2.3:a:starfish:rich_review:1.5.11
Starfish » Rich Review » Version: 1.5.12

cpe:2.3:a:starfish:rich_review:1.5.12
Starfish » Rich Review » Version: 1.5.2

cpe:2.3:a:starfish:rich_review:1.5.2
Starfish » Rich Review » Version: 1.5.3

cpe:2.3:a:starfish:rich_review:1.5.3
Starfish » Rich Review » Version: 1.5.4

cpe:2.3:a:starfish:rich_review:1.5.4
Starfish » Rich Review » Version: 1.5.5

cpe:2.3:a:starfish:rich_review:1.5.5
Starfish » Rich Review » Version: 1.5.6

cpe:2.3:a:starfish:rich_review:1.5.6
Starfish » Rich Review » Version: 1.5.7

cpe:2.3:a:starfish:rich_review:1.5.7
Starfish » Rich Review » Version: 1.5.8

cpe:2.3:a:starfish:rich_review:1.5.8
Starfish » Rich Review » Version: 1.5.9

cpe:2.3:a:starfish:rich_review:1.5.9
Starfish » Rich Review » Version: 1.6.0

cpe:2.3:a:starfish:rich_review:1.6.0
Starfish » Rich Review » Version: 1.6.1

cpe:2.3:a:starfish:rich_review:1.6.1
Starfish » Rich Review » Version: 1.6.2

cpe:2.3:a:starfish:rich_review:1.6.2
Starfish » Rich Review » Version: 1.6.3

cpe:2.3:a:starfish:rich_review:1.6.3
Starfish » Rich Review » Version: 1.6.4

cpe:2.3:a:starfish:rich_review:1.6.4
Starfish » Rich Review » Version: 1.6.5

cpe:2.3:a:starfish:rich_review:1.6.5
Starfish » Rich Review » Version: 1.8.0

cpe:2.3:a:starfish:rich_review:1.8.0
Starfish » Rich Review » Version: 1.8.1

cpe:2.3:a:starfish:rich_review:1.8.1
Starfish » Rich Review » Version: 1.8.2

cpe:2.3:a:starfish:rich_review:1.8.2
Starfish » Rich Review » Version: 1.8.3

cpe:2.3:a:starfish:rich_review:1.8.3
Starfish » Rich Review » Version: 1.8.4

cpe:2.3:a:starfish:rich_review:1.8.4
Starfish » Rich Review » Version: 1.8.5

cpe:2.3:a:starfish:rich_review:1.8.5
Starfish » Rich Review » Version: 1.8.6

cpe:2.3:a:starfish:rich_review:1.8.6
Starfish » Rich Review » Version: 1.8.7

cpe:2.3:a:starfish:rich_review:1.8.7
Starfish » Rich Review » Version: 1.8.8

cpe:2.3:a:starfish:rich_review:1.8.8
Starfish » Rich Review » Version: 1.8.9

cpe:2.3:a:starfish:rich_review:1.8.9
Starfish » Rich Review » Version: 1.9.0

cpe:2.3:a:starfish:rich_review:1.9.0
Starfish » Rich Review » Version: 1.9.1

cpe:2.3:a:starfish:rich_review:1.9.1
Starfish » Rich Review » Version: 1.9.2

cpe:2.3:a:starfish:rich_review:1.9.2
Starfish » Rich Review » Version: 1.9.3

cpe:2.3:a:starfish:rich_review:1.9.3
Starfish » Rich Review » Version: 1.9.4

cpe:2.3:a:starfish:rich_review:1.9.4
Starfish » Rich Review » Version: 1.9.5

cpe:2.3:a:starfish:rich_review:1.9.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24753

Products

Pricing

Contact Us