Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

reviewx — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting reviewx. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Reviewx is a code review platform designed to identify security vulnerabilities in software development pipelines. Historically, it has been associated with multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues. The platform has recorded nine CVEs to date, with several critical RCE vulnerabilities allowing attackers to execute arbitrary code on affected systems. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks in environments where Reviewx is deployed without additional security controls. Organizations implementing Reviewx should ensure regular updates and compensating controls to mitigate identified weaknesses.

Top products by reviewx: ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema ReviewX
CVE IDTitleCVSSSeverityPublished
CVE-2025-10734 ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More <= 2.2.12 - Unauthenticated Sensitive Information Exposure — ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & SchemaCWE-922 5.3 Medium2026-03-23
CVE-2025-10679 ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More <= 2.2.12 - Unauthenticated Limited Remote Code Execution — ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & SchemaCWE-94 7.3 High2026-03-23
CVE-2025-10731 ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More <= 2.2.12 - Unauthenticated Sensitive Information Exposure to Data Export — ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & SchemaCWE-285 5.3 Medium2026-03-23
CVE-2025-10736 ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More <= 2.2.10 - Incorrect Authorization to Unauthenticated Information Exposure and Data Manipulation — ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & SchemaCWE-285 6.5 Medium2026-03-23
CVE-2024-43323 WordPress ReviewX plugin <= 1.6.28 - Broken Access Control vulnerability — ReviewXCWE-862 5.3 Medium2024-11-01
CVE-2024-3609 ReviewX – Multi-criteria Rating & Reviews for WooCommerce <= 1.6.27 - Missing Authorization — ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & SchemaCWE-862 4.3 Medium2024-05-16
CVE-2024-33921 WordPress ReviewX plugin <= 1.6.21 - Broken Access Control vulnerability — ReviewX 4.3 Medium2024-05-03
CVE-2024-29812 WordPress ReviewX plugin <= 1.6.22 - Cross Site Scripting (XSS) vulnerability — ReviewXCWE-79 6.5 Medium2024-03-27
CVE-2023-2833 ReviewX <= 1.6.13 - Arbitrary Usermeta Update to Authenticated (Subscriber+) Privilege Escalation — ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & SchemaCWE-269 8.8 High2023-06-06

This page lists every published CVE security advisory associated with reviewx. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.