exploitDog

CVE-2025-60245

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Deserialization of Untrusted Data vulnerability in WP User Manager WP User Manager wp-user-manager allows Object Injection.This issue affects WP User Manager: from n/a through <= 2.9.12.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/wp-user-manager/vulnerability/wordpress-wp-user-manager-plugin-2-9-12-php-object-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 19%

0.00061

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502

Связанные уязвимости

GHSA-r8cp-qxmg-7ccr

CVSS3: 9.8

github

3 месяца назад

Deserialization of Untrusted Data vulnerability in WP User Manager WP User Manager wp-user-manager allows Object Injection.This issue affects WP User Manager: from n/a through <= 2.9.12.

EPSS

Процентиль: 19%

0.00061

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502