| |
Vulnerability CVE-2022-4327
Published: 2023-01-16
| Description: |
The Anti-Malware Security and Brute-Force Firewall WordPress plugin through 4.21.85 is prone to a PHP Object Injection vulnerability due to the unsafe use of unserialize() function. A potential attacker, authenticated as high privilege user could exploit this vulnerability by sending specially crafted requests to the web application containing malicious serialized input. |
Type:
CWE-502 (Deserialization of Untrusted Data)
References: |
https://wpscan.com/vulnerability/2c94e7b6-a9dd-47d4-bb17-20acb072c825
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
