CVE List

CVE-2022-4327

Critical 7.2

The Anti-Malware Security and Brute-Force Firewall WordPress plugin through 4.21.85 is prone to a PHP Object Injection vulnerability due to the unsafe use of unserialize() function. A potential attacker, authenticated as high privilege user could exploit this vulnerability by sending specially crafted requests to the web application containing malicious serialized input.

Published January 16, 2023.

Affected software

Get alerts for Anti-malware Security And Brute-force Firewall Project Anti-malware Security And Brute-force Firewall

Reference links