CVE-2022-3425

🗓️ 23 Jan 2023 15:13:15Reported by [email protected]Type

The Analyticator WordPress plugin v6.5.6 unserializes user input, allowing high-privilege users to perform PHP Object Injection

Reporter	Title	Published	Views	Family All 6
Prion	Design/Logic Flaw	23 Jan 202315:15	–	prion
Cvelist	CVE-2022-3425 Google Analyticator < 6.5.6 - Admin+ PHP Object Injection	23 Jan 202314:31	–	cvelist
WPVulnDB	Google Analyticator < 6.5.6 - Admin+ PHP Object Injection	27 Dec 202200:00	–	wpvulndb
wpexploit	Google Analyticator < 6.5.6 - Admin+ PHP Object Injection	27 Dec 202200:00	–	wpexploit
CVE	CVE-2022-3425	23 Jan 202315:15	–	cve
OpenVAS	WordPress Google Analyticator Plugin < 6.5.6 Multiple PHP Object Injection Vulnerabilities	24 Jan 202300:00	–	openvas

Nvd

Node

sumo google_analyticatorRange<6.5.6wordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/df1c36bb-9861-4272-89c9-ae76e62f687c

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Jan 2023 15:15Current

7.2High risk

Vulners AI Score7.2

CVSS37.2

EPSS0.00114