Vulnerabilities > CVE-2022-4043 - Unspecified vulnerability in WP Custom Admin Interface Project WP Custom Admin Interface

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

wp-custom-admin-interface-project

NVD

Published: 2023-01-09

Updated: 2024-11-21

Summary

The WP Custom Admin Interface WordPress plugin before 7.29 unserialize user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present.

Vulnerable Configurations

Part	Description	Count
Application	Wp_Custom_Admin_Interface_Project WP Custom Admin Interface Project WP Custom Admin Interface *	1

References

https://wpscan.com/vulnerability/ffff8c83-0a59-450a-9b40-c7f3af7205fc
https://wpscan.com/vulnerability/ffff8c83-0a59-450a-9b40-c7f3af7205fc