exploitDog

CVE-2025-39588

Опубликовано: 17 апр. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons allows Object Injection. This issue affects Ultimate Store Kit Elementor Addons: from n/a through 2.4.0.

Ссылки

https://patchstack.com/database/wordpress/plugin/ultimate-store-kit/vulnerability/wordpress-ultimate-store-kit-elementor-addons-2-4-0-deserialization-of-untrusted-data-vulnerability?_s_id=cve

EPSS

Процентиль: 36%

0.00151

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502

Связанные уязвимости

GHSA-c2q8-7637-6wgv

CVSS3: 9.8

github

10 месяцев назад

Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons allows Object Injection. This issue affects Ultimate Store Kit Elementor Addons: from n/a through 2.4.0.

EPSS

Процентиль: 36%

0.00151

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502