Skip to main content

Essential Blocks Pro

1 CVEs product

Monthly

CVE-2023-4402 HIGH POC This Week

The Essential Blocks plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 4.2.0 via deserialization of untrusted input in the get_products function. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

WordPress Deserialization PHP Information Disclosure Essential Blocks +1
NVD VulDB
CVSS 3.1
8.1
EPSS
2.9%
EPSS 3% CVSS 8.1
HIGH POC This Week

The Essential Blocks plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 4.2.0 via deserialization of untrusted input in the get_products function. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

WordPress Deserialization PHP +3
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy