10 matches found
CVE-2024-31211
WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...
Exploit for CVE-2024-31211
It is an exploit module/toolkit targeting unspecified products/s...
Insecure Deserialization
WordPress is vulnerable to Insecure Deserialization. The vulnerability is due to deserialization of untrusted data containing the instances of the WPHTMLToken class. This can lead to remote code execution via the destruct magic method of the class...
BIT-WORDPRESS-2024-31211 Remote Code Execution in `WP_HTML_Token`
WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...
WordPress RCE Vulnerability (GHSA-m257-q4m5-j653) - Windows
WordPress is prone to a remote code execution RCE vulnerability in SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
WordPress RCE Vulnerability (GHSA-m257-q4m5-j653) - Linux
WordPress is prone to a remote code execution RCE vulnerability in SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2024-31211
WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...
CVE-2024-31211 Remote Code Execution in `WP_HTML_Token`
WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...
CVE-2024-31211
WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...
Exploit for Deserialization of Untrusted Data in Wpengine Better_Search_Replace
PoC exploit for CVE-2023-6933, a vulnerability in a web applicat...