Oceanwp: >> Ocean Extra >> 2.0.3 Security Vulnerabilities
The Ocean Extra WordPress plugin before 2.0.5 unserialises the content of an imported file, which could lead to PHP object injections issues when a high privilege user import (intentionally or not) a malicious Customizer Styling file and a suitable gadget chain is present on the blog.
CVSS Score
7.2
EPSS Score
0.01
Published
2022-10-31
Page 2