VYPR

Ec Stars Rating

by WordPress

Source repositories

CVEs (2)

  • CVE-2021-24893HigJan 3, 2022
    risk 0.49cvss 7.5epss 0.02

    The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service in the comments section, or pending comment dashboard depending if the user sent it as unauthenticated or authenticated.

  • CVE-2025-53296MedJun 27, 2025
    risk 0.38cvss 5.9epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ecoal95 EC Stars Rating ec-stars-rating allows Stored XSS.This issue affects EC Stars Rating: from n/a through <= 1.0.11.