cleantalk
Vulnerabilities and Security Researches

Ultimate Reviews, 75ad8726-09a5-49b7-9534-61371a543764

CVE, Research URL

75ad8726-09a5-49b7-9534-61371a543764

Home page URL

Security reports for Ultimate Reviews

Application

Ultimate Reviews

Published on
-
Research Description
Ultimate Reviews [ultimate-reviews] < 2.1.33 Ultimate Reviews &lt; 2.1.33 - Unauthenticated PHP Object Injection There were three occurrences in the plugin where an unauthenticated user could inject a serialized PHP object via a cookie, which could potentially lead to a PHP object injection vulnerability.
Affected versions
max 2.1.33.
Status
vulnerable
Previous vulnerability researches
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (bb4d8c6ce231464414d44706e8b51467551524ef) , Jun 16, 2026
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (CVE-2023-33999) , Jun 13, 2026
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (CVE-2024-11009) , Nov 28, 2024
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (CVE-2022-4974) , Nov 16, 2024
New vulnerability
Add Hierarchy (parent) to post (320e5a0515ace557d12b1b4deb599baed0ee97bc) , Jun 16, 2026
Sales Page Addon &#8211; Elementor &amp; Beaver Builder (81e0854a6b24c5d0582ec815905e6d7d4d736081) , Jun 16, 2026
Kaya QR Code Generator (1e00947396c1019d0f5e935ec5c63a4dcbba7bac) , Jun 16, 2026
Countdown, Coming Soon, Maintenance &#8211; Countdown &amp; Clock (73ec6727301fec392c5f3bd54fe7d92994cf0751) , Jun 16, 2026
WordPress Robots.txt optimizer (+ XML Sitemap) – Boost SEO, Traffic &amp; Rankings (7e57cd4f4859826de00a8e2b09ee24fb7f2d824b) , Jun 16, 2026