4 matches found
CVE-2024-30227
Deserialization of Untrusted Data vulnerability in INFINITUM FORM Geo Controller.This issue affects Geo Controller: from n/a through 8.6.4...
CVE-2024-30227
The CVE-2024-30227 entry concerns the WordPress Geo Controller plugin (≤ 8.6.4). The vulnerability is due to Deserialization of Untrusted Data leading to PHP Object Injection, with unauthenticated exploitation possible. Impact is high (confidentiality, integrity, availability all affected) and CV...
CVE-2024-30227 WordPress Geo Controller plugin <= 8.6.4 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in INFINITUM FORM Geo Controller.This issue affects Geo Controller: from n/a through 8.6.4...
WordPress Geo Controller Plugin <= 8.6.4 is vulnerable to PHP Object Injection
Software Geo Controller Type Plugin Vulnerable versions = 8.6.4 Fixed in 8.6.5 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-30227 Patch priority High CVSS severity High 9 Developer Claim ownership PSID d77f0684feba Credits LVT-tholv2k Required privilege...