CVE-2022-2903 in Contact Form PluginИнформация

Сводка

по MITRE • 26.09.2022

The Ninja Forms Contact Form WordPress plugin before 3.6.13 unserialises the content of an imported file, which could lead to PHP object injections issues when an admin import (intentionally or not) a malicious file and a suitable gadget chain is present on the blog.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Резервировать

19.08.2022

Раскрытие

26.09.2022

Модерация

принято

Вход

VDB-209555

EPSS

0.01091

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

Want to know what is going to be exploited?

We predict KEV entries!