Vulnerabilities > Etoilewebdesign > Ultimate Reviews > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-15 | CVE-2024-25597 | Unspecified vulnerability in Etoilewebdesign Ultimate Reviews Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Etoile Web Design Ultimate Reviews allows Stored XSS.This issue affects Ultimate Reviews: from n/a through 3.2.8. | 6.1 |
| 2022-01-28 | CVE-2022-23979 | Cross-site Scripting vulnerability in Etoilewebdesign Ultimate Reviews Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability discovered in Ultimate Reviews WordPress plugin (versions <= 3.0.15). | 4.8 |