VYPR

Mambo Importer

by WordPress

CVEs (1)

  • CVE-2024-13899Feb 22, 2025
    risk 0.00cvss epss 0.01

    The Mambo Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0 via deserialization of untrusted input via the $data parameter in the fImportMenu function. This makes it possible for authenticated attackers, with…