WordPress Plugin Vulnerabilities

Go Pricing - WordPress Responsive Pricing Tables < 3.4 - Contributor+ PHP Object Injection via shortcode

Description

The plugin does not sanitize the data parameter of its go_pricing shortcode before unserializing it, which could allow users with a role as low as a contributor to perform PHP Object Injection attacks if a suitable gadget chain is found on the site.

Affects Plugins

Plugin icon
go_pricing
Fixed in 3.4

References

CVE
CVE-2023-2500
URL
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/go_pricing/go-pricing-wordpress-responsive-pricing-tables-3319-authenticated-subscriber-php-object-injection

Classification

Type
OBJECT INJECTION
OWASP top 10
A8: Insecure Deserialization
CWE
CWE-502
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
b5b60ce0-4cb6-4ca5-b0f2-26f97e71f012

Timeline

Publicly Published
2023-05-23 (about 2 years ago)
Added
2023-05-30 (about 2 years ago)
Last Updated
2023-05-30 (about 2 years ago)

Other

Published
Title
Published
2021-03-10
Title
Five Star Restaurant Menu < 2.2.1 - Unauthenticated PHP Object Injection
Published
2025-07-01
Title
Amwerk < 1.3.0 - Unauthenticated PHP Object Injection
Published
2025-03-06
Title
Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress < 4.7.4 - Authenticated (Administrator+) PHP Object Injection
Published
2025-06-09
Title
Themify Edmin <= 2.0.0 - Authenticated (Contributor+) PHP Object Injection
Published
2023-12-05
Title
Sayfa Sayaç <= 2.6 - Unauthenticated PHP Object Injection