exploitDog

CVE-2025-39527

Опубликовано: 17 апр. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

Deserialization of Untrusted Data vulnerability in bestwebsoft Rating by BestWebSoft allows Object Injection. This issue affects Rating by BestWebSoft: from n/a through 1.7.

Ссылки

https://patchstack.com/database/wordpress/plugin/rating-bws/vulnerability/wordpress-rating-by-bestwebsoft-1-7-php-object-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 39%

0.00176

Низкий

8.8 High

CVSS3

Дефекты

CWE-502

Связанные уязвимости

GHSA-wwj8-vw56-c53c

CVSS3: 8.8

github

10 месяцев назад

Deserialization of Untrusted Data vulnerability in bestwebsoft Rating by BestWebSoft allows Object Injection. This issue affects Rating by BestWebSoft: from n/a through 1.7.

EPSS

Процентиль: 39%

0.00176

Низкий

8.8 High

CVSS3

Дефекты

CWE-502