Ultimate Reviews < 2.1.33 - Unauthenticated PHP Object Injection

Description

There were three occurrences in the plugin where an unauthenticated user could inject a serialized PHP object via a cookie, which could potentially lead to a PHP object injection vulnerability.

Affects Plugins

ultimate-reviews

Fixed in version 2.1.33✓

References

URL

https://blog.nintechnet.com/wordpress-ultimate-reviews-plugin-fixed-insecure-deserialization-vulnerability/

URL

https://plugins.trac.wordpress.org/changeset/2409141

Classification

Type

OBJECT INJECTION

OWASP top 10

A8: Insecure Deserialization

CWE

CWE-502

Miscellaneous

Original Researcher

Jerome Bruandet (nintechnet)

Verified

WPVDB ID

75ad8726-09a5-49b7-9534-61371a543764

Timeline

Publicly Published

2020-11-10 (about 11 months ago)

Added

2020-11-10 (about 11 months ago)

Last Updated

2020-11-11 (about 11 months ago)

Our Other Services

WPScan WordPress Security Plugin