CVE-2020-36726

CRITICAL

Ultimate Reviews <2.1.32 - Code Injection

Title source: llm

Description

The Ultimate Reviews plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.1.32 via deserialization of untrusted input in several vulnerable functions. This allows unauthenticated attackers to inject a PHP Object. No POP chain is present in the vulnerable plugin.

References (3)

Core 3

Core References

Exploit

https://blog.nintechnet.com/wordpress-ultimate-reviews-plugin-fixed-insecure-deserialization-vulnerability/

Release Notes

https://plugins.trac.wordpress.org/changeset/2409141

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/db30acd7-ce51-45d9-8ff0-6ceea8237a8c?source=cve

Scores

CVSS v3 9.8

EPSS 0.0157

EPSS Percentile 72.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-502

Status published

Products (2)

etoilewebdesign/ultimate_reviews < 2.1.32

rustaurius/Ultimate Reviews < 2.1.33

Published Jun 07, 2023

Tracked Since Feb 18, 2026