CVE-2022-3342
CVE-2022-3342 (Jetpack CRM – zero BS CRM) is a PHP PHAR deserialization vulnerability in the ZeroBSCRM_CSVImporterLitehtml_app function. In affected WordPress plugin versions up to 5.3.1, nonce checks mis-handle failure and perform a file_exists check on zbscrmcsvimpf; supplying a phar:// archive...