CVE-2016-10948

CVE-2016-10948

EPSS 1.7%

The Post Indexer plugin before 3.0.6.2 for WordPress has incorrect handling of data passed to the unserialize function.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://advisories.dxw.com/advisories/unserialisation-in-post-indexer-could-allow-man-in-the-middle-to-execute-arbitrary-code-in-some-circumstances/