← back
CVE-2023-52202

WordPress HTML5 MP3 Player with Folder Feedburner Plugin <= 2.8.0 is vulnerable to PHP Object Injection

CVSS 9.1 CRITICALEPSS 0.6%CWE-502
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.1EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
08 Jan 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Deserialization of Untrusted Data vulnerability in SVNLabs Softwares HTML5 MP3 Player with Folder Feedburner Playlist Free.This issue affects HTML5 MP3 Player with Folder Feedburner Playlist Free: from n/a through 2.8.0.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H