ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Rating-Widget: Star Review System plugin 2.8.9 - Information Disclosure vulnerability

Product
Rating Widget
Description
Information Disclosure vulnerability found Tom Adams (DXW) in WordPress Rating-Widget: Star Review System (version 2.8.9).
Solution
Update the WordPress Rating-Widget: Star Review System plugin to the latest available version (at least 2.9.0).
Classification
Type Information Disclosure
OWASP Top 10 A6: Sensitive Data Exposure
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In 2.8.9
Fixed In 2.9.0
Disclosure date
2018-04-29
Credits
Tom Adams
Submitter
ThreatPress