Vulnerability Description
The Ultimate Reviews plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.1.32 via deserialization of untrusted input in several vulnerable functions. This allows unauthenticated attackers to inject a PHP Object. No POP chain is present in the vulnerable plugin.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Etoilewebdesign | Ultimate Reviews | <= 2.1.32 |
Related Weaknesses (CWE)
References
- https://blog.nintechnet.com/wordpress-ultimate-reviews-plugin-fixed-insecure-desExploit
- https://plugins.trac.wordpress.org/changeset/2409141Release Notes
- https://www.wordfence.com/threat-intel/vulnerabilities/id/db30acd7-ce51-45d9-8ffThird Party Advisory
- https://blog.nintechnet.com/wordpress-ultimate-reviews-plugin-fixed-insecure-desExploit
- https://plugins.trac.wordpress.org/changeset/2409141Release Notes
- https://www.wordfence.com/threat-intel/vulnerabilities/id/db30acd7-ce51-45d9-8ffThird Party Advisory
FAQ
What is CVE-2020-36726?
CVE-2020-36726 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The Ultimate Reviews plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.1.32 via deserialization of untrusted input in several vulnerable functions. This al...
How severe is CVE-2020-36726?
CVE-2020-36726 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-36726?
Check the references section above for vendor advisories and patch information. Affected products include: Etoilewebdesign Ultimate Reviews.