CVE-2024-1950
The CVE-2024-1950 entry applies to the WordPress plugin “Product Carousel Slider & Grid Ultimate for WooCommerce.” It describes a PHP Object Injection via deserialization of untrusted shortcode input in all versions up to 1.9.7. Attack requires an authenticated user with contributor+ privileges; ...