Unrated severityNVD Advisory· Published Aug 18, 2014· Updated Jun 17, 2026
CVE-2014-5203
CVE-2014-5203
Description
wp-includes/class-wp-customize-widgets.php in the widget implementation in WordPress 3.9.x before 3.9.2 might allow remote attackers to execute arbitrary code via crafted serialized data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:wordpress:wordpress:3.9.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:wordpress:wordpress:3.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:wordpress:wordpress:3.9.1:*:*:*:*:*:*:*
- (no CPE)range: <3.9.2
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.