5 matches found
CVE-2025-49507
Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay cozystay allows Object Injection.This issue affects CozyStay: from n/a through 1.7.1...
CVE-2025-49507
creationtimestamp| type| source ---|---|--- 2025-06-10 13:30:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17882 2025-06-10 15:23:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrb75pnwcc2r...
CVE-2025-49507
Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay cozystay allows Object Injection.This issue affects CozyStay: from n/a through 1.7.1...
CVE-2025-49507 WordPress CozyStay theme < 1.7.1 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay cozystay allows Object Injection.This issue affects CozyStay: from n/a through 1.7.1...
CVE-2025-49507
CVE-2025-49507 corresponds to a PHP Object Injection in the WordPress CozyStay theme. Multiple sources confirm CozyStay versions prior to 1.7.1 are affected by a deserialization of untrusted data vulnerability that can lead to code execution. Public advisories consistently cite CozyStay < 1.7....