Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/03/29 6:31 a.m.24 views

CVE-2025-2332

The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.13 via deserialization of untrusted input in the 'returnMetaValueAsCustomerInput' function. This makes it possible for unauthenticated attacke...

9.8CVSS7.9AI score0.00703EPSS
Exploits0References1
Circl
Circl
added 2025/03/27 6:40 a.m.14 views

CVE-2025-2332

creationtimestamp| type| source ---|---|--- 2025-03-27 06:40:12+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lldowwbk252g 2025-03-27 07:30:19+00:00| published-proof-of-concept| Telegram/nXpxTUnuiIyQonR7LnQBkLEoYc0D4Dc9ELBHZOgfYe7uvjo 2025-03-27 08:17:33+00:00| seen|...

9.8CVSS8.7AI score0.00703EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/27 5:22 a.m.25 views

CVE-2025-2332 Export All Posts, Products, Orders, Refunds & Users <= 2.13 - Unauthenticated PHP Object Injection

The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.13 via deserialization of untrusted input in the 'returnMetaValueAsCustomerInput' function. This makes it possible for unauthenticated attacke...

9.8CVSS0.00703EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/27 5:22 a.m.17 views

CVE-2025-2332 Export All Posts, Products, Orders, Refunds & Users <= 2.13 - Unauthenticated PHP Object Injection

The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.13 via deserialization of untrusted input in the 'returnMetaValueAsCustomerInput' function. This makes it possible for unauthenticated attacke...

9.8CVSS9.7AI score0.00703EPSS
Exploits0References3
Rows per page
Query Builder