The plugin is affected by an insecure deserialisation issue, which could lead to an unauthenticated PHP object injection (when a suitable gadget chain is present)
Jerome Bruander (nintechnet)
No
2020-12-29 (about 2 years ago)
2020-12-29 (about 2 years ago)
2023-06-08 (about 3 months ago)