CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-47507 – WordPress Master Slider Pro Plugin <= 3.6.5 is vulnerable to PHP Object Injection
https://notcve.org/view.php?id=CVE-2023-47507
Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue affects Master Slider Pro: from n/a through 3.6.5. Vulnerabilidad de deserialización de datos no confiables en Master Slider Master Slider Pro. Este problema afecta a Master Slider Pro: desde n/a hasta 3.6.5. The Master Slider Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.6.5 via deserialization of untrusted input. This makes it possible for unauthenticated attackers to inject a PHP Object. • https://patchstack.com/database/vulnerability/masterslider/wordpress-master-slider-pro-plugin-3-6-5-php-object-injection-vulnerability?_s_id=cve • CWE-502: Deserialization of Untrusted Data •