Vulnerabilities and security researches forembedder-for-google-reviews embedder-for-google-reviews

Jun 07, 2024

CVE, Research URL: 6c2ad8e1f17e8fda8cdcf6e1b760d67c74bba1a6
Home page URL: Security reports for Google Reviews WordPress Plugin (Widget to add and display reviews)
Application: Google Reviews WordPress Plugin (Widget to add and display reviews)
Date: Jul 18, 2023
Research Description: Google Reviews WordPress Plugin (Widget to add and display reviews) [embedder-for-google-reviews] < 1.5.12 WordPress Embedder for Google Reviews Plugin < 1.5.12 is vulnerable to Cross Site Scripting (XSS) Update the plugin to the latest version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Embedder for Google Reviews Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.5.12.
Affected versions: Min -, max -.
Status: vulnerable