exploitDog

CVE-2025-53299

Опубликовано: 20 авг. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Deserialization of Untrusted Data vulnerability in ThemeMakers ThemeMakers Visual Content Composer allows Object Injection. This issue affects ThemeMakers Visual Content Composer: from n/a through 1.5.8.

Ссылки

https://patchstack.com/database/wordpress/plugin/tmm_content_composer/vulnerability/wordpress-thememakers-visual-content-composer-plugin-1-5-8-php-object-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 28%

0.00101

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502

Связанные уязвимости

GHSA-xxm4-m7f5-mqxf

CVSS3: 9.8

github

6 месяцев назад

Deserialization of Untrusted Data vulnerability in ThemeMakers ThemeMakers Visual Content Composer allows Object Injection. This issue affects ThemeMakers Visual Content Composer: from n/a through 1.5.8.

EPSS

Процентиль: 28%

0.00101

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502