cleantalk
Vulnerabilities and Security Researches

AnyComment, CVE-2022-0279

CVE, Research URL

CVE-2022-0279

Home page URL

Security reports for AnyComment

Application

AnyComment

Published on
Feb 21, 2022
Research Description
The AnyComment WordPress plugin before 0.2.18 is affected by a race condition when liking/disliking a comment/reply, which could allow any authenticated user to quickly raise their rating or lower the rating of other users
Affected versions
max 0.2.18.
Status
vulnerable
Previous vulnerability researches
AnyComment (CVE-2021-24838) , Jun 07, 2024
AnyComment (CVE-2022-0279) , Jun 07, 2024
AnyComment (CVE-2018-21001) , Jun 07, 2024
AnyComment (CVE-2022-0134) , Jun 07, 2024
AnyComment (CVE-2025-60240) , Nov 10, 2025
New vulnerability
SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer (CVE-2025-62048) , Nov 11, 2025
Team Member Showcase Staff List Plugin – Employee Spotlight (CVE-2025-12090) , Nov 11, 2025
WPeMatico RSS Feed Fetcher (CVE-2025-49922) , Nov 11, 2025
Cost Calculator Builder (CVE-2025-9243) , Nov 11, 2025
Off-Canvas Sidebars & Menus (Slidebars) (CVE-2025-62891) , Nov 11, 2025