First published: Mon Jun 20 2022(Updated: )
The Rating by BestWebSoft WordPress plugin before 1.6 does not validate the submitted rating, allowing submission of long integer, causing a Denial of Service on the post/page when a user submit such rating
Credit: contact@wpscan.com
Affected Software | Affected Version | How to fix |
---|---|---|
Bestwebsoft Rating | <1.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-25121 is a vulnerability in the Rating by BestWebSoft WordPress plugin before version 1.6 that allows for the submission of a long integer as a rating, causing a Denial of Service on the affected post or page.
CVE-2021-25121 affects BestWebSoft Rating plugin before version 1.6 by allowing users to submit a long integer as a rating, leading to a Denial of Service on the post or page.
CVE-2021-25121 has a severity rating of 6.5 (medium).
Yes, you can fix CVE-2021-25121 by updating the Rating by BestWebSoft WordPress plugin to version 1.6 or higher.
You can find more information about CVE-2021-25121 at the following reference: [CVE-2021-25121](https://wpscan.com/vulnerability/efb1ddef-2123-416c-a932-856d41ed836d)