CVE-2026-24634

Publication date

2026-01-23 14:29:08

Family

Patchstack

State

PUBLISHED

Description

Authorization Bypass Through User-Controlled Key vulnerability in Rustaurius Ultimate Reviews ultimate-reviews allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Reviews: from n/a through <= 3.2.16.