CVE-2025-60237 WordPress Finag theme <= 1.5.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Themeton Finag allows Object Injection.This issue affects Finag: from n/a through 1.5.0...

CVE-2025-60237 WordPress Finag theme <= 1.5.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Themeton Finag allows Object Injection.This issue affects Finag: from n/a through 1.5.0...

CVE-2025-60237

CVE-2025-60237 affects the WordPress Finag theme up to version 1.5.0, describing a PHP Object Injection via deserialization of untrusted data. Reported across multiple sources (NVD, Red Hat, EUVD, CVE records, CVE List) with a CVSS v3.1 base score of 9.8 (CRITICAL), network attack vector, low att...

WordPress Finag theme <= 1.5.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Finag versions = 1.5.0...