CVE-2023-5952

Publication date

2023-12-04 21:27:54

Family

WPScan

State

PUBLISHED

Description

The Welcart e-Commerce WordPress plugin before 2.9.5 unserializes user input from cookies, which could allow unautehtniacted users to perform PHP Object Injection when a suitable gadget is present on the blog