The plugin unserialises (via usces_unserialize()) the content of the usces_cookie cookie, which could lead to a PHP Object Injection issue.
OBJECT INJECTION
Ram Gall (Wordfence)
No
2020-11-05 (about 2 years ago)
2020-11-09 (about 2 years ago)