0.001 Low
EPSS
Percentile
42.0%
The plugin was vulnerable to Authenticated Phar Deserialization. The vulnerability was discovered by sonarsource. Update to versions 5.24.3 and above to patch the vulnerability.
blog.sonarsource.com/civicrm-code-execution-vulnerability-chain-explained/