Vulnerabilities > CVE-2022-4302 - Unspecified vulnerability in Videousermanuals White Label CMS 2.2.9

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

videousermanuals

NVD

Published: 2023-01-02

Updated: 2023-11-07

Summary

The White Label CMS WordPress plugin before 2.5 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present.

Vulnerable Configurations

Part	Description	Count
Application	Videousermanuals Videousermanuals White Label CMS - Videousermanuals White Label CMS 2.2.9	2

References

https://wpscan.com/vulnerability/b7707a15-0987-4051-a8ac-7be2424bcb01