The Carts Guru plugin 1.4.5 for WordPress allows Insecure Deserialization via a cartsguru-source cookie to classes/wc-cartsguru-event-handler.php.
References
Link | Resource |
---|---|
http://dumpco.re/bugs/wp-plugin-carts-guru-id | Exploit Third Party Advisory |
https://wpvulndb.com/vulnerabilities/9292 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-05-20T19:39:11
Updated: 2019-05-27T09:06:06
Reserved: 2019-05-20T00:00:00
Link: CVE-2019-12241
JSON object: View
NVD Information
Status : Modified
Published: 2019-05-20T20:29:00.847
Modified: 2019-05-27T10:29:07.260
Link: CVE-2019-12241
JSON object: View
Redhat Information
No data.
CWE