cve/CVE-2023-4971.md at 694ac234a19db48cd3b1f78eb5f461ab1f6c99f7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 4edef1e4c8 Update CVE sources 2024-05-28 08:49

2024-05-28 08:49:17 +00:00

Description

The Weaver Xtreme Theme Support WordPress plugin before 6.3.1 unserialises the content of an imported file, which could lead to PHP object injections issues when a high privilege user import a malicious file and a suitable gadget chain is present on the blog.

POC

Reference

https://wpscan.com/vulnerability/421194e1-6c3f-4972-8f3c-de1b9d2bcb13

Github

No PoCs found on GitHub currently.

838 B Raw Blame History

CVE-2023-4971

Description

POC

Reference

Github

838 B

Raw Blame History