ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema

Vulnerabilities 15Slug reviewxLatest version 2.3.10WordPress.org →

Minimum safe version

2.3.7

Update to 2.3.7 or later to address 15 fixable vulnerabilities

Latest available2.3.10 ✓

N/A

2026-04-22< 2.3.7

ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema <= 2.3.6 - Missing Authorization

Wordfence CVE

Medium 5.3

2026-03-23< 2.3.0

CVE-2025-10734

CVE Wordfence

Medium 5.3

2026-03-23< 2.3.0

CVE-2025-10731

CVE Wordfence

High 7.3

2026-03-23< 2.3.0

CVE-2025-10679

CVE Wordfence

Medium 6.5

2026-03-23< 2.2.12

CVE-2025-10736

CVE Wordfence

Critical 9.8

2024-11-01< 1.6.29

CVE-2024-43323

CVE Patchstack Wordfence

Medium 4.3

2024-05-16< 1.6.28

CVE-2024-3609

CVE Patchstack Wordfence

High 8.8

2024-05-03< 1.6.22

CVE-2024-33921

CVE Patchstack Wordfence

Medium 6.5

2024-03-27< 1.6.23

CVE-2024-29812

CVE Wordfence Patchstack WPScan

Medium 4.3

2024-12-13< 1.6.18

CVE-2023-40670

CVE Patchstack Wordfence

N/A

< 1.2.9

ReviewX < 1.2.9 - Unauthorised AJAX call via CSRF

WPScan

High 8.8

2023-06-06< 1.6.14

CVE-2023-2833

CVE Patchstack Wordfence WPScan

Medium 6.1

2023-11-07< 1.6.8

CVE-2022-46809

CVE Patchstack Wordfence

High 8.8

2023-04-19< 1.6.9

ReviewX – Multi-criteria Rating & Reviews for WooCommerce <= 1.6.8 - Authenticated (Subscriber+) SQL Injection

Wordfence Patchstack CVE WPScan

N/A

2021-06-30< 1.2.9

WooCommerce Reviews Plugin with Multi-criteria Rating by ReviewX < 1.2.9 - Cross-Site Request Forgery

Wordfence