CVE-2023-51414 – WordPress EnvíaloSimple Plugin <= 2.1 is vulnerable to PHP Object Injection

https://notcve.org/view.php?id=CVE-2023-51414

27 Dec 2023 — Deserialization of Untrusted Data vulnerability in EnvialoSimple EnvíaloSimple: Email Marketing y Newsletters.This issue affects EnvíaloSimple: Email Marketing y Newsletters: from n/a through 2.1. Vulnerabilidad de deserialización de datos no confiables en EnvialoSimple EnvíaloSimple: Email Marketing y Newsletters. Este problema afecta a EnvíaloSimple: Email Marketing y Newsletters: desde n/a hasta 2.1. The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to PHP Object Injecti... • https://patchstack.com/database/vulnerability/envialosimple-email-marketing-y-newsletters-gratis/wordpress-envialosimple-plugin-2-1-unauthenticated-php-object-injection-vulnerability?_s_id=cve • CWE-502: Deserialization of Untrusted Data •