CVE-2019-15319
CVE-2019-15319 concerns the WordPress plugin OptionTree, vulnerable before version 2.7.0. The issue is PHP Object Injection enabled by leveraging a valid nonce, as described in multiple sources (NVD entry and vendor/WP listings). Impact details in the NVD metrics show high/critical severity (CVSS...