cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-7432,https://securityvulnerability.io/vulnerability/CVE-2024-7432,Unseen Blog Theme Vulnerable to PHP Object Injection,"The Unseen Blog theme for WordPress is subject to a PHP Object Injection vulnerability, which affects all versions up to and including 1.0.0. This flaw arises from the deserialization of untrusted input, potentially enabling authenticated attackers with Contributor-level access or higher to inject PHP objects. Although the vulnerable software does not currently exhibit a known Payload Object Pollution (POP) chain, if an additional plugin or theme is installed that provides such a chain, attackers can exploit the vulnerability. This could lead to severe consequences, including the ability to delete arbitrary files, access sensitive data, or execute malicious code on the affected system.",Wordpress,Unseen Blog,8.8,HIGH,0.0005000000237487257,false,,false,false,false,,false,false,2024-10-01T07:30:08.690Z,0