No analysis available yet.
Vendor Solution
Update the WordPress ReviewX Plugin to the latest available version (at least 2.3.11).
Tracking
Sign in to view the affected projects.
No advisories yet.
Thu, 02 Jul 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Reviewx
Reviewx reviewx Wordpress Wordpress wordpress |
|
| Vendors & Products |
Reviewx
Reviewx reviewx Wordpress Wordpress wordpress |
|
| Metrics |
ssvc
|
Thu, 02 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Cross Site Scripting (XSS) in ReviewX <= 2.3.10 versions. | |
| Title | WordPress ReviewX plugin <= 2.3.10 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-07-02T12:42:52.044Z
Reserved: 2026-06-24T12:45:36.889Z
Link: CVE-2026-57359
Updated: 2026-07-02T12:42:48.575Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-02T13:15:02Z
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')