Lucene search
PatchstackCVELIST:CVE-2023-52181HistoryDec 31, 2023 - 10:07 a.m.
CVE-2023-52181 WordPress Theme per user Plugin <= 1.0.1 is vulnerable to PHP Object Injection
2023-12-3110:07:49
CWE-502
Patchstack
www.cve.org
cve-2023
vulnerable
php object injection
deserialization
presslabs theme
10 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.1%
Deserialization of Untrusted Data vulnerability in Presslabs Theme per user.This issue affects Theme per user: from n/a through 1.0.1.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "theme-per-user",
"product": "Theme per user",
"vendor": "Presslabs",
"versions": [
{
"changes": [
{
"at": "1.0.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.0.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Deserialization of untrusted data
2023-12-31 10:15:00
nvd
nvd
CVE-2023-52181
2023-12-31 10:15:08
wpvulndb
wpvulndb
Theme per user < 1.0.2 - Unauthenticated PHP Object Injection
2024-01-05 00:00:00
cve
cve
CVE-2023-52181
2023-12-31 10:15:08
wordfence
wordfence
10 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.1%
Related for CVELIST:CVE-2023-52181