WordPress Ninja Forms plugin” (versions <= 3.6.10) unauthenticated PHP object injection vulnerability
2022年6月16日(木) 15:01
重大性スコア(CVS)
Details
Unauthenticated PHP object injection vulnerability discovered in the WordPress Ninja Forms plugin (version <= 3.6.10).
solution
Update the WordPress Ninja Forms plugin to the latest version available (at least 3.6.11).
Sources.
Ninja Forms – The Contact Form Builder That Grows With You
The 100% beginner friendly WordPress form builder. Drag & drop form fields to build beautiful, professional contact forms in minutes.
wordpress.org
