Vulnerability CVE-2022-3334
Published: 2022-10-31

Description:
The Easy WP SMTP WordPress plugin before 1.5.0 unserialises the content of an imported file, which could lead to PHP object injection issue when an admin import (intentionally or not) a malicious file and a suitable gadget chain is present on the blog.

Type:

CWE-502

 (Deserialization of Untrusted Data)

 References:
https://wpscan.com/vulnerability/0e735502-eaa2-4047-949e-bc8eb6b39fc9
Copyright 2026, cxsecurity.com

 

Back to Top