Lucene search
+L

5 matches found

NVD
NVD
added 2024/04/07 6:15 p.m.23 views

CVE-2024-31308

Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue affects WP Import Export Lite: from n/a through 3.9.26...

7.2CVSS4.8AI score0.00404EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/07 5:20 p.m.16 views

CVE-2024-31308 WordPress WP Import Export Lite & WP Import Export plugin <= 3.9.26 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue affects WP Import Export Lite: from n/a through 3.9.26...

4.4CVSS8.6AI score0.00404EPSS
Exploits0References1
CVE
CVE
added 2024/04/07 5:20 p.m.64 views

CVE-2024-31308

CVE-2024-31308 refers to a Deserialization/PHP Object Injection vulnerability in the WP Import Export Lite WordPress plugin (affected up to and including 3.9.26). The issue is authenticated (Administrator+) and arises from Deserialization of Untrusted Data, enabling potential arbitrary object inj...

7.2CVSS8.6AI score0.00404EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/04/07 5:20 p.m.31 views

CVE-2024-31308 WordPress WP Import Export Lite & WP Import Export plugin <= 3.9.26 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue affects WP Import Export Lite: from n/a through 3.9.26...

4.4CVSS5.1AI score0.00404EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/04/05 12:0 a.m.12 views

WordPress WP Import Export Lite Plugin <= 3.9.26 is vulnerable to PHP Object Injection

Software WP Import Export Lite Type Plugin Vulnerable versions = 3.9.26 Fixed in 3.9.27 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-31308 Patch priority Low CVSS severity Low 4.4 Developer Claim ownership PSID 6bc80ca274a7 Credits Trình Vũ Sonicrrrr from VNPT-VCI...

4.4CVSS6.8AI score0.00404EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder