Vulnerabilities > CVE-2023-49819 - Deserialization of Untrusted Data vulnerability in Wpsc-Plugin Structured Content

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
wpsc-plugin
CWE-502
critical
NVD
Published: 2023-12-19
Updated: 2024-01-02

Summary

Deserialization of Untrusted Data vulnerability in Gordon Böhme, Antonio Leutsch Structured Content (JSON-LD) #wpsc.This issue affects Structured Content (JSON-LD) #wpsc: from n/a through 1.5.3.

Vulnerable Configurations

Part Description Count
Application
Wpsc-Plugin
15

Common Weakness Enumeration (CWE)

References