CVE-2024-4471 | xpro 140+ Widgets Plugin up to 1.4.3.1 on WordPress export_content deserialization

Posted by Angelo Barbosa | May 23, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in xpro 140+ Widgets Plugin up to 1.4.3.1 on WordPress. Affected by this issue is the function export_content. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2024-4471. The attack may be launched remotely. There is no exploit available.

CVE-2024-4471 | xpro 140+ Widgets Plugin up to 1.4.3.1 on WordPress export_content deserialization

Related Posts

CVE-2022-48726 | Linux Kernel up to 5.10.98/5.15.21/5.16.7 ucma xa_for_each use after free

CVE-2023-41706 | Open-Xchange OX App Suite up to 7.6.3-rev71/7.10.6-rev55/8.19 Drive Search resource consumption

CVE-2024-34953 | NetEase taurusxin ncmdump 1.3.2 NCM File denial of service

CVE-2024-10301 | PHPGurukul Medical Card Generation System 1.0 Search search-medicalcard.php searchdata sql injection