Unrated severityNVD Advisory· Published Aug 5, 2022· Updated Apr 28, 2026
WordPress Rich Reviews by Starfish plugin <= 1.9.14 - Cross-Site Request Forgery (CSRF) vulnerability
CVE-2021-36861
Description
Cross-Site Request Forgery (CSRF) vulnerability in Rich Reviews by Starfish plugin <= 1.9.14 at WordPress allows an attacker to delete reviews.
Affected products
1- Range: <= 1.9.14
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- patchstack.com/database/vulnerability/rich-reviews/wordpress-rich-reviews-by-starfish-plugin-1-9-14-cross-site-request-forgery-csrf-vulnerabilitymitrex_refsource_CONFIRM
- wordpress.org/plugins/rich-reviews/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.