Missing Authorization vulnerability in Wp Ultimate Review
CVE-2024-32684
7.5HIGH
What is CVE-2024-32684?
A missing authorization vulnerability exists in the Wpmet Wp Ultimate Review plugin, which could allow unauthorized users to access certain review functions. This issue primarily affects versions of the plugin from n/a through 2.2.5, potentially compromising the integrity of user reviews and the overall security of WordPress installations. It is crucial for administrators to update to the latest version and implement necessary security measures to safeguard their sites.
Affected Version(s)
Wp Ultimate Review <= 2.2.5