WordPress Plugin Customer Reviews for WooCommerce Multiple Vulnerabilities - CVE-2022-40194 - Vulnerability Database

WordPress Plugin Customer Reviews for WooCommerce Multiple Vulnerabilities - CVE-2022-40194

High

Reference: CVE-2022-40194

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-40194

Title: WordPress Plugin Customer Reviews for WooCommerce Multiple Vulnerabilities

Overview:

WordPress Plugin Customer Reviews for WooCommerce is prone to multiple vulnerabilities including security bypass cross-site request forgery and information disclosure vulnerabilities. Exploiting these issues could allow an attacker to perform otherwise restricted actions to perform certain administrative actions and gain unauthorized access to the affected application or to obtain sensitive information which could aid in launching further attacks. WordPress Plugin Customer Reviews for WooCommerce version 5.3.5 is vulnerable prior versions may also be affected.