EPSS
Percentile
86.1%
The plugin unserialised the fdm_cart cookie value without any sanitisation or validation first, when the Ordering setting of the plugin was enabled, leading to a PHP object injection which could lead to RCE
appcheck-ng.com/cve-2020-29045/