CVE-2025-23739

Published Mar 3, 2025

Last updated 5 days ago

Overview

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jtibbles WP Ultimate Reviews FREE wp-ultimate-reviews-free allows Reflected XSS.This issue affects WP Ultimate Reviews FREE: from n/a through <= 1.0.2.
Source: audit@patchstack.com
NVD status: Deferred

Weaknesses

audit@patchstack.com: CWE-79

Hype score: Not currently trending

References

Sources include official advisories and independent security research.