Vulnerabilities > CVE-2019-15319 - Deserialization of Untrusted Data vulnerability in Optiontree Project Optiontree
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The option-tree plugin before 2.7.0 for WordPress has Object Injection by leveraging a valid nonce.