VYPR

Dj Reviews

by WordPress

CVEs (2)

  • CVE-2023-0424MedApr 24, 2023
    risk 0.35cvss 5.4epss 0.00

    The MS-Reviews WordPress plugin through 1.5 does not sanitise and escape reviews, which could allow users any authenticated users, such as Subscribers to perform Stored Cross-Site Scripting attacks

  • CVE-2025-54295MedJul 23, 2025
    risk 0.33cvss epss 0.00

    A Reflected XSS vulnerability in DJ-Reviews component 1.0-1.3.6 for Joomla was discovered.