Full Disclosure

Unserialisation in Post Indexer could allow man-in-the-middle to execute arbitrary code (in some circumstances) (WordPress plugin)

November 18, 2016 007admin Leave a comment

Posted by dxw Security on Nov 18

Details
================
Software: Post Indexer
Version: 3.0.6.1
Homepage: http://premium.wpmudev.org/project/post-indexer/
Advisory report:
https://security.dxw.com/advisories/unserialisation-in-post-indexer-could-allow-man-in-the-middle-to-execute-arbitrary-code-in-some-circumstances/
CVE: Awaiting assignment
CVSS: 7.6 (High; AV:N/AC:H/Au:N/C:C/I:C/A:C)

Description
================
Unserialisation in Post Indexer could allow man-in-the-middle…

Leave a Reply Cancel reply

You must be logged in to post a comment.

Software and Security Information