VYPR
Unrated severityNVD Advisory· Published Oct 25, 2022· Updated May 9, 2025

Kadence WooCommerce Email Designer < 1.5.7 - Admin+ PHP Objection Injection

CVE-2022-3335

Description

The Kadence WooCommerce Email Designer WordPress plugin before 1.5.7 unserialises the content of an imported file, which could lead to PHP object injections issues when an admin import (intentionally or not) a malicious file and a suitable gadget chain is present on the blog.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.