3 matches found
CVE-2023-40555
Deserialization of Untrusted Data vulnerability in UX-themes Flatsome | Multi-Purpose Responsive WooCommerce Theme.This issue affects Flatsome | Multi-Purpose Responsive WooCommerce Theme: from n/a through 3.17.5...
CVE-2023-40555
CVE-2023-40555 affects Flatsome theme for WordPress (<= 3.17.5). The vulnerability is a Deserialization of Untrusted Data issue leading to unauthenticated PHP Object Injection via deserialization of untrusted input in the Flatsome codebase. CVSS v3.1 metrics from NVD indicate a CRITICAL impact...
WordPress Flatsome Theme <= 3.17.5 is vulnerable to PHP Object Injection
Software Flatsome Type Theme Vulnerable versions = 3.17.5 Fixed in 3.17.6 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2023-40555 Patch priority High CVSS severity High 8.3 Developer Claim ownership PSID 0472344ea36e Credits Rafie Muhammad Patchstack Required privilege...