CVE-2016-10948

HIGH

Post Indexer < 3.0.6.2 - Remote Code Execution via Unserialize Function

Title source: llm
STIX 2.1

Description

The Post Indexer plugin before 3.0.6.2 for WordPress has incorrect handling of data passed to the unserialize function.

Scores

CVSS v3 8.1
EPSS 0.0172
EPSS Percentile 74.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (1)
post_indexer_project/post_indexer < 3.0.6.2
Published Sep 13, 2019
Tracked Since Feb 18, 2026