Known Vulnerabilities for products from Geminilabs

Listed below are 7 of the newest known vulnerabilities associated with the vendor "Geminilabs".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-27629 json Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Paul Ryley Site Reviews plugin <= 6.5.1 versions. 5.4 - MEDIUM 2023-06-22 2023-06-28
CVE-2023-27612 json Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Paul Ryley Site Reviews plugin <= 6.5.1 versions. 5.4 - MEDIUM 2023-06-22 2023-06-28
CVE-2023-1525 json The Site Reviews WordPress plugin before 6.7.1 does not sanitise and escape some of its settings, which could allow high priv... 4.8 - MEDIUM 2023-05-02 2023-11-07
CVE-2022-46801 json Improper Neutralization of Formula Elements in a CSV File vulnerability in Paul Ryley Site Reviews.This issue affects Site Re... Not Provided 2023-11-07 2026-04-28
CVE-2021-24973 json The Site Reviews WordPress plugin before 5.17.3 does not sanitise and escape the site-reviews parameter of the glsr_action AJ... 6.1 - MEDIUM 2022-01-03 2022-01-08
CVE-2021-24603 json The Site Reviews WordPress plugin before 5.13.1 does not sanitise some of its Review Details when adding a review as an admin... 5.4 - MEDIUM 2021-09-06 2021-09-09
CVE-2018-0603 json Cross-site scripting vulnerability in Site Reviews versions prior to 2.15.3 allows remote attackers to inject arbitrary web s... 6.1 - MEDIUM 2018-06-26 2018-08-17

Known software with vulnerabilities from Geminilabs

Type Vendor Product Version
ApplicationGeminilabsSite Reviews1.0.0