CVE-2021-24893

Name of the Vulnerable Software and Affected Versions The Stars Rating WordPress plugin versions prior to 3.5.1

Description The issue allows submission of a long integer, causing a Denial of Service in the comments section or pending comment dashboard, depending on whether the user sent it as unauthenticated or authenticated. This occurs because the plugin does not validate the submitted rating.

Recommendations For versions prior to 3.5.1, update to version 3.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the comments section and pending comment dashboard to minimize the risk of exploitation.