CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-52181 – WordPress Theme per user Plugin <= 1.0.1 is vulnerable to PHP Object Injection
https://notcve.org/view.php?id=CVE-2023-52181
29 Dec 2023 — Deserialization of Untrusted Data vulnerability in Presslabs Theme per user.This issue affects Theme per user: from n/a through 1.0.1. Vulnerabilidad de deserialización de datos no confiables en Presslabs Tema por usuario. Este problema afecta al Tema por usuario: desde n/a hasta 1.0.1. The Theme per user plugin for WordPress is vulnerable to PHP Object Injection in all versions up to 1.0.2 (exclusive) via deserialization of untrusted input. This makes it possible for unauthenticated attackers to inject a P... • https://patchstack.com/database/vulnerability/theme-per-user/wordpress-theme-per-user-plugin-1-0-1-unauthenticated-php-object-injection-vulnerability?_s_id=cve • CWE-502: Deserialization of Untrusted Data •