← Back to CVE List
CVE-2023-5952
The Welcart e-Commerce WordPress plugin before 2.9.5 unserializes user input from cookies, which could allow unautehtniacted users to perform PHP Object Injection when a suitable gadget is present on the blog
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt