WordPress Plugin Vulnerabilities

GD Star Rating 1.9.18 - Export Security Bypass

Description

The gd-star-rating WordPress plugin was affected by an Export Security Bypass security vulnerability.

Affects Plugins

Plugin icon
gd-star-rating
Fixed in 1.9.19

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287

Miscellaneous

Verified
No
WPVDB ID
98129bc5-452e-4846-aaed-f938322d9951

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2015-07-03 (about 10 years ago)

Other

Published
Title
Published
2024-07-08
Title
WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 <= 1.0.1 - Improper Authorization due to use of Hardcoded Credentials
Published
2025-09-18
Title
Service Finder SMS System <= 2.0.0 - Authentication Bypass
Published
2015-02-02
Title
Revive Old Post < 6.9.4 - Privilege Escalation
Published
2026-01-27
Title
AhaChat Messenger Marketing <= 1.1 - Authentication Bypass
Published
2026-02-12
Title
Login with Salesforce <= 1.0.2 - Unauthenticated Authentication Bypass