CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37390 – WordPress Themesflat Addons For Elementor Plugin <= 2.0.0 is vulnerable to PHP Object Injection
https://notcve.org/view.php?id=CVE-2023-37390
07 Aug 2023 — Deserialization of Untrusted Data vulnerability in Themesflat Themesflat Addons For Elementor.This issue affects Themesflat Addons For Elementor: from n/a through 2.0.0. Vulnerabilidad de deserialización de datos no confiables en Themesflat Themesflat Addons For Elementor. Este problema afecta a Themesflat Addons For Elementor: desde n/a hasta 2.0.0. The Themesflat Addons For Elementor plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.0.0 via deserialization of u... • https://patchstack.com/database/vulnerability/themesflat-addons-for-elementor/wordpress-themesflat-addons-for-elementor-plugin-2-0-0-unauthenticated-php-object-injection-vulnerability?_s_id=cve • CWE-502: Deserialization of Untrusted Data •