CVE-2022-2440
HIGHThemeeditor Theme Editor < 2.9 - Insecure Deserialization
Title source: ruleDescription
The Theme Editor plugin for WordPress is vulnerable to deserialization of untrusted input via the 'images_array' parameter in versions up to, and including 2.8. This makes it possible for authenticated attackers with administrative privileges to call files using a PHAR wrapper that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. It also requires that the attacker is successful in uploading a file with the serialized payload.
References (3)
Scores
CVSS v3
7.2
EPSS
0.0064
EPSS Percentile
70.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-502
Status
published
Affected Products (1)
themeeditor/theme_editor
< 2.9
Timeline
Published
Aug 29, 2024
Tracked Since
Feb 18, 2026