CVE-2023-5952
The Welcart e-Commerce WordPress plugin before 2.9.5 unserializes user input from cookies, which could allow unautehtniacted users to perform PHP Object Injection when a suitable gadget is present on the blog
9.8CVSS
9.5AI Score
0.001EPSS