1 results (0.001 seconds)

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

16 Jun 2025 — Deserialization of Untrusted Data vulnerability in CRM Perks Integration for Contact Form 7 and Zoho CRM, Bigin allows Object Injection. This issue affects Integration for Contact Form 7 and Zoho CRM, Bigin: from n/a through 1.3.0. The Integration for Contact Form 7 and Zoho CRM, Bigin plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.3.0 via deserialization of untrusted input. This makes it possible for unauthenticated attackers to inject a PHP Object. No known ... • https://patchstack.com/database/wordpress/plugin/cf7-zoho/vulnerability/wordpress-integration-for-contact-form-7-and-zoho-crm-bigin-1-3-0-php-object-injection-vulnerability?_s_id=cve • CWE-502: Deserialization of Untrusted Data •