A vulnerability classified as critical has been found in wpwax Post Grid, Slider & Carousel Ultimate Plugin up to 1.6.7 on WordPress. Affected is the function
outpost_shortcode_metabox_markup
. The manipulation leads to deserialization.
This vulnerability is traded as CVE-2024-2006. It is possible to launch the attack remotely. There is no exploit available.