5 matches found
CVE-2024-43354
Deserialization of Untrusted Data vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through = 2.7.2...
CVE-2024-43354
creationtimestamp| type| source ---|---|--- 2024-08-19 22:43:23+00:00| seen| https://t.me/cvedetector/3554...
CVE-2024-43354 WordPress myCred plugin <= 2.7.2 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through = 2.7.2...
CVE-2024-43354
CVE-2024-43354 relates to the WordPress plugin myCred, versions ≤ 2.7.2, with a PHP Object Injection vulnerability caused by untrusted data deserialization. The issue affects the myCred component (WordPress plugin) and is described in multiple connected sources as a deserialization of untrusted d...
WordPress myCred Plugin <= 2.7.2 is vulnerable to PHP Object Injection
Software myCred Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.7.3 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-43354 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID d4c5d0fdee74 Credits LVT-tholv2k Required privilege Unauthenticated...