Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:54 a.m.7 views

CVE-2023-1669

The SEOPress WordPress plugin before 6.5.0.3 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...

7.2CVSS7AI score0.18505EPSS
Exploits2References1
OSV
OSV
added 2023/05/02 8:15 a.m.4 views

CVE-2023-1669

The SEOPress WordPress plugin before 6.5.0.3 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...

7.2CVSS7.1AI score0.18505EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/05/02 7:4 a.m.8 views

CVE-2023-1669 SEOPress < 6.5.0.3 - Admin+ PHP Object Injection

The SEOPress WordPress plugin before 6.5.0.3 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...

7.2AI score0.18505EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/05/02 7:4 a.m.26 views

CVE-2023-1669 SEOPress < 6.5.0.3 - Admin+ PHP Object Injection

The SEOPress WordPress plugin before 6.5.0.3 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...

7.4AI score0.18505EPSS
Exploits2References1
CVE
CVE
added 2023/05/02 7:4 a.m.59 views

CVE-2023-1669

CVE-2023-1669 affects the SEOPress WordPress plugin up to version 6.5.0.3. The issue arises from unserializing user input provided through settings, which could allow high-privilege users (e.g., admins) to perform PHP Object Injection when a suitable gadget is present. The vulnerability is confir...

7.2CVSS7.1AI score0.18505EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/04/06 12:0 a.m.8 views

WordPress SEOPress Plugin <= 6.5.0.2 is vulnerable to PHP Object Injection

Software SEOPress Type Plugin Vulnerable versions = 6.5.0.2 Fixed in 6.5.0.3 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2023-1669 Patch priority Low CVSS severity Low 6.6 Developer Claim ownership PSID 045f095df46e Credits Nguyen Huu Do Required privilege Administrator...

7.2CVSS6.8AI score0.18505EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder