Lucene search

K
prionPRIOn knowledge basePRION:CVE-2023-3154
HistoryOct 16, 2023 - 8:15 p.m.

Deserialization of untrusted data

2023-10-1620:15:00
PRIOn knowledge base
www.prio-n.com
6
deserialization untrusted data wordpress plugin nvd phar

0.001 Low

EPSS

Percentile

36.4%

The WordPress Gallery Plugin WordPress plugin before 3.39 is vulnerable to PHAR Deserialization due to a lack of input parameter validation in the gallery_edit function, allowing an attacker to access arbitrary resources on the server.

CPENameOperatorVersion
nextgen_gallerylt3.39

0.001 Low

EPSS

Percentile

36.4%

Related for PRION:CVE-2023-3154