CVE-2022-4680

The Revive Old Posts WordPress plugin before 9.0.11 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:revive:revive_old_posts:*:*:*:*:*:wordpress:*:*

History

07 Nov 2023, 03:58

Type Values Removed Values Added
CWE CWE-502

Information

Published : 2023-01-30 21:15

Updated : 2024-02-28 19:51


NVD link : CVE-2022-4680

Mitre link : CVE-2022-4680

CVE.ORG link : CVE-2022-4680


JSON object : View

Products Affected

revive

  • revive_old_posts
CWE

No CWE.