CVE-2023-23649 – WordPress MainWP Links Manager Extension Plugin <= 2.1 - Unauthenticated PHP Object Injection Vulnerability

https://notcve.org/view.php?id=CVE-2023-23649

Deserialization of Untrusted Data vulnerability in MainWP MainWP Links Manager Extension.This issue affects MainWP Links Manager Extension: from n/a through 2.1. Vulnerabilidad de deserialización de datos no confiables en MainWP MainWP Links Manager Extension. Este problema afecta a MainWP Links Manager Extension: desde n/a hasta 2.1. The MainWP Links Manager Extension plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.1 via deserialization of untrusted input. This allows unauthenticated attackers to inject a PHP Object. • https://patchstack.com/database/vulnerability/mainwp-links-manager-extension/wordpress-mainwp-links-manager-extension-plugin-2-1-unauthenticated-php-object-injection-vulnerability?_s_id=cve • CWE-502: Deserialization of Untrusted Data •