CVE-2024-4471 | xpro 140+ Widgets Plugin up to 1.4.3.1 on WordPress export_content deserialization

Posted by Angelo Barbosa | May 23, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in xpro 140+ Widgets Plugin up to 1.4.3.1 on WordPress. Affected by this issue is the function export_content. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2024-4471. The attack may be launched remotely. There is no exploit available.

CVE-2024-4471 | xpro 140+ Widgets Plugin up to 1.4.3.1 on WordPress export_content deserialization

Related Posts

CVE-2024-39560 | Juniper Networks Junos OS/Junos OS Evolved Routing Protocol Daemon exceptional condition (JSA83020)

CVE-2022-38141 | Zorem Sales Report Email for WooCommerce Plugin up to 2.8 on WordPress authorization

CVE-2024-8711 | SourceCodester Food Ordering Management System 1.0 /includes/ exposure of information through directory listing

CVE-2024-8329 | Gether Technology 6SHR System sql injection