2 matches found
CVE-2025-27287
CVE-2025-27287 concerns a Deserialization of Untrusted Data vulnerability in the WordPress plugin SS Quiz (ssquiz) that enables PHP object injection. Affected versions are from n/a through 2.0.5. The issue stems from untrusted data deserialization, enabling unintended object instantiation. Severa...
WordPress SS Quiz Plugin <= 2.0.5 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin SS Quiz versions = 2.0.5...