CVE-2023-4642
kk Star Ratings < 5.4.6 - Rating Tampering via Race Condition
The kk Star Ratings WordPress plugin before 5.4.6 does not implement atomic operations, allowing one user vote multiple times on a poll due to a Race Condition.
We have discovered 1,593 live websites that are affected by CVE-2023-4642.
Affected Software
| Product |  kk Star Ratings |
| Category | Wordpress Plugins |
| Vulnerable Versions |
|
| Total Vulnerable Versions | 49 |
| Vulnerable Domains | 1,593 live websites (34.76% of kk Star Ratings install base) |
Common Weakness Enumeration
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-4642 and the relative popularity of websitesDetails
- Published - Nov 27, 2023
- Updated - Nov 27, 2023
Credits
- Mohammad Reza Omrani (finder)
- WPScan (coordinator)
CWE
CVE References
CWE References
Countries
 United States | 300 websites |
 Vietnam | 364 websites |
 France | 191 websites |
 Poland | 115 websites |
 Iran | 103 websites |
 Germany | 86 websites |
 Spain | 57 websites |
 Czech Republic | 45 websites |
 Netherlands | 29 websites |
 Russia | 23 websites |
TLDs
| .com | 609 websites |
| .pl | 99 websites |
| .fr | 85 websites |
| .net | 82 websites |
| .org | 67 websites |
| .de | 38 websites |
| .cz | 37 websites |
| .es | 22 websites |
| .ru | 21 websites |
| .com.br | 20 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redGeographical Distribution
The distribution of websites across the globe that are exposed to CVE-2023-4642 through included software libraries and plugins.Websites affected by CVE-2023-4642
Top websites that are affected by CVE-2023-4642. Please click on the "Contact us" button above to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***.******.at |  Austria | *,*** | |
| *********.org | Spain | **,*** | |
| *********.co | United States | **,*** | |
| **************.org | United States | **,*** | |
| ***.*******.com | United States | **,*** | |
| **************.com | Spain | **,*** | |
| ************.com | Vietnam | **,*** | |
| ******.**.id |  Indonesia | **,*** | |
| ******.net | Vietnam | **,*** | |
| ********.***.vn | Vietnam | **,*** |