High severity7.2NVD Advisory· Published Dec 27, 2021· Updated Jun 17, 2026
CVE-2021-24753
CVE-2021-24753
Description
The Rich Reviews by Starfish WordPress plugin before 1.9.6 does not properly validate the orderby GET parameter of the pending reviews page before using it in a SQL statement, leading to an authenticated SQL injection issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.9.6
Patches
Vulnerability mechanics
References
2- plugins.trac.wordpress.org/changeset/2624882/nvdPatchThird Party Advisory
- wpscan.com/vulnerability/be7b102f-3982-46bd-a79c-203498f7c820nvdExploitPatchThird Party Advisory
News mentions
0No linked articles in our index yet.