CVE-2022-3334
- Reference to the description:
- Description:
- The Easy WP SMTP WordPress plugin before 1.5.0 unserialises the content of an imported file, which could lead to PHP object injection issue when an admin import (intentionally or not) a malicious file and a suitable gadget chain is present on the blog.
- Last updated date:
- 11/01/2022
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 11/01/2022
- Reference url to background
https://wpscan.com/vulnerability/0e735502-eaa2-4047-949e-bc8eb6b39fc9