WP Customer Reviews

Vulnerabilities 11Slug wp-customer-reviewsLatest version 3.7.7WordPress.org →

Minimum safe version

3.7.6

Update to 3.7.6 or later to address 11 fixable vulnerabilities

Latest available3.7.7 ✓

High 7.2

2026-02-19< 3.7.6

CVE-2025-14452

CVE Wordfence

Medium 5.4

2024-04-15< 3.7.1

CVE-2024-1849

CVE Patchstack Wordfence WPScan

Medium 4.3

2023-11-22< 3.6.7

CVE-2023-4686

CVE Wordfence Patchstack WPScan

Medium 4.8

2023-10-20< 3.6.7

CVE-2023-4648

CVE Patchstack Wordfence WPScan

N/A

2017-04-06< 3.0.9

WordPress WP Customer Reviews plugin <= 3.0.8 - Cross-Site Request Forgery (CSRF)/Cross-Site Scripting (XSS) Vulnerabilities

Patchstack

N/A

2017-04-06< 3.0.9

WordPress WP Customer Reviews plugin <= 3.0.8 - Cross-Site Request Forgery (CSRF) Vulnerability

Patchstack

N/A

2020-08-20< 3.4.3

WordPress WP Customer Reviews plugin <= 3.4.2 - Multiple Unauthenticated and Low Privilege Authenticated Stored XSS vulnerabilities

Patchstack

High 8.8

2019-08-21< 3.0.9

CVE-2016-10902

CVE Wordfence WPScan

Medium 6.1

2019-08-21< 3.0.9

CVE-2016-10901

CVE Wordfence

Medium 6.1

2021-03-18< 3.4.3

CVE-2021-24135

CVE Wordfence WPScan

Medium 4.8

2021-05-24< 3.5.6

CVE-2021-24296

CVE Patchstack Wordfence WPScan