WordPress Plugin Vulnerabilities

ReviewX < 1.6.14 - Subscriber+ Privilege Escalation

Description

The plugin does not validate parameters passed to the rx_set_screen_options function, allowing any authenticated users, such as subscriber to set themselves as administrators

Affects Plugins

Plugin icon
reviewx
Fixed in 1.6.14

References

CVE
CVE-2023-2833
URL
https://www.wordfence.com/blog/2023/05/wpdeveloper-addresses-privilege-escalation-vulnerability-in-reviewx-wordpress-plugin/

Classification

Type
PRIVESC
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-269
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Lana Codes
Verified
Yes
WPVDB ID
1f62bc00-1315-4eda-8517-3e3ad7e1c5e1

Timeline

Publicly Published
2023-05-23 (about 2 years ago)
Added
2023-06-01 (about 2 years ago)
Last Updated
2023-06-01 (about 2 years ago)

Other

Published
Title
Published
2023-11-14
Title
Thrive Theme Builder < 3.24.0 - Subscriber+ Privilege Escalation
Published
2023-08-22
Title
Donation Forms by Charitable < 1.7.0.13 - Unauthenticated Privilege Escalation
Published
2018-09-06
Title
wpForo < 1.5.2 - Privilege Escalation
Published
2025-08-29
Title
PostX < 4.1.36 - Authenticated (Editor+) Privilege Escalation
Published
2017-11-27
Title
Elementor Page Builder < 1.8.0 - Authenticated Unrestricted Editing