Estatik Real Estate Plugin, CVE-2023-6049

CVE, Research URL: CVE-2023-6049
Home page URL: Security reports for Estatik Real Estate Plugin
Application: Estatik Real Estate Plugin
Published on: Jan 15, 2024
Research Description: The Estatik Real Estate Plugin WordPress plugin before 4.1.1 unserializes user input via some of its cookies, which could allow unauthenticated users to perform PHP Object Injection when a suitable gadget chain is present on the blog
Affected versions: max 4.1.1.
Status: vulnerable