VYPR

Starfish Review Generation & Marketing

by WordPress

CVEs (2)

  • CVE-2025-15157HigFeb 13, 2026
    risk 0.57cvss 8.8epss 0.00

    The Starfish Review Generation & Marketing for WordPress plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'srm_restore_options_defaults' function in all versions up to, and…

  • CVE-2025-39533HigApr 17, 2025
    risk 0.57cvss 8.8epss 0.00

    Missing Authorization vulnerability in Starfish Reviews Starfish Review Generation & Marketing starfish-reviews allows Privilege Escalation.This issue affects Starfish Review Generation & Marketing: from n/a through <= 3.1.19.