Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Yet_another_stars_rating
(Yet_another_stars_rating_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-02-04 | CVE-2022-23980 | Cross-Site Scripting (XSS) vulnerability discovered in Yasr – Yet Another Stars Rating WordPress plugin (versions <= 2.9.9), vulnerable at parameter 'source'. | Yet_another_stars_rating | 6.1 | ||
| 2023-11-30 | CVE-2023-37867 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in YetAnotherStarsRating.Com YASR – Yet Another Star Rating Plugin for WordPress.This issue affects YASR – Yet Another Star Rating Plugin for WordPress: from n/a through 3.3.8. | Yet_another_stars_rating | 8.1 | ||
| 2019-10-10 | CVE-2015-9465 | The yet-another-stars-rating plugin before 0.9.1 for WordPress has yasr_get_multi_set_values_and_field SQL injection via the set_id parameter. | Yet_another_stars_rating | N/A |