WP ULike – Like & Dislike Buttons for Engagement and Feedback

Vulnerabilities 19Slug wp-ulikeLatest version 5.0.3WordPress.org →

Minimum safe version

5.0.2

Update to 5.0.2 or later to address 19 fixable vulnerabilities

Latest available5.0.3
N/A
2026-03-10< 5.0.2

WP ULike <= 5.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attribute

WordfenceCVE
Medium 5.3
2026-02-03< 5.0.0

WP ULike <= 4.8.3.1 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary Log Deletion via 'id' Parameter

EUVDWordfenceCVE
Low 3.5
2024-09-09< 4.7.2.1

WordPress WP ULike Plugin < 4.7.2.1 is vulnerable to Cross Site Scripting (XSS)

PatchstackCVEWordfence
N/A
< 3.2

WP ULike &lt;= 3.1 - Unauthenticated Stored XSS

WPScan
N/A
2018-06-05< 3.2

WordPress WP ULike plugin <= 3.1 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability

Patchstack