CVE-2024-1731
The CVE-2024-1731 entry concerns the Auto Refresh Single Page plugin for WordPress. It is vulnerable to PHP Object Injection in all versions up to 1.1 via deserialization of untrusted input from the arsp_options post meta option. An authenticated attacker with contributor-level access or higher c...