CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

OSV•added 2024/12/16 3:15 p.m.•2 views

CVE-2024-54367

Deserialization of Untrusted Data vulnerability in ForumWP ForumWP allows Object Injection.This issue affects ForumWP: from n/a through 2.1.0...

9.8CVSS5.8AI score0.00986EPSS

Exploits0References1

Circl•added 2024/12/16 2:47 p.m.•7 views

CVE-2024-54367

creationtimestamp| type| source ---|---|--- 2024-12-16 14:47:32+00:00| seen| https://infosec.exchange/users/vuldb/statuses/113663046610332694...

9.8CVSS6.9AI score0.00986EPSS

Exploits0References1

Vulnrichment•added 2024/12/16 2:31 p.m.•15 views

CVE-2024-54367 WordPress ForumWP plugin <= 2.1.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Ultimate Member ForumWP forumwp allows Object Injection.This issue affects ForumWP: from n/a through = 2.1.0...

9.8CVSS8.6AI score0.00986EPSS

Exploits0References1

CVE•added 2024/12/16 2:31 p.m.•47 views

CVE-2024-54367

CVE-2024-54367 affects ForumWP (ForumWP) up to version 2.1.0. Deserialization of untrusted data enables PHP object injection (unauthenticated). The Red Hat/Wordfence entries indicate the issue is acknowledged and patched in 2.1.0; remediation is to upgrade to the patched version (2.1.0) or later.

9.8CVSS7.2AI score0.00986EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by