4 matches found
WordPress Google Analyticator Plugin < 6.5.6 Multiple PHP Object Injection Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sumo:googleanalyticator"; if description...
CVE-2022-3425 Google Analyticator < 6.5.6 - Admin+ PHP Object Injection
The Analyticator WordPress plugin before 6.5.6 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...
CVE-2022-3425 Google Analyticator < 6.5.6 - Admin+ PHP Object Injection
The Analyticator WordPress plugin before 6.5.6 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...
CVE-2022-3425
The CVE-2022-3425 issue affects the WordPress plugin The Analyticator (versions prior to 6.5.6). The vulnerability stems from unserializing user input in the plugin settings, which could let high-privilege users (e.g., administrators) perform PHP Object Injection when a suitable gadget is present...